Nikto
Nikto (7.8k β) is a common website vulnerability scanning tool:
- π₯ to find known vulnerabilities
- π to find known misconfigurations
- π to find outdated software
- π΅ to find sensitive files
- ...
See also Plugins such as robots
, or cgi
...
Usage:
$ nikto -h URL
$ nikto [...] -p 80,8000,8080 # ports
$ nikto [...] -Display V # ex: verbose
$ nikto [...] -Tuning 9 # ex: SQL injection