nikto
« Back to VersTracker
Description:
Web server scanner
Type: Formula  |  Latest Version: 2.5.0@0  |  Tracked Since: Nov 22, 2025
Links: Homepage  |  formulae.brew.sh
Category: Security
Tags: security web-scanner penetration-testing vulnerability-detection http
Install: brew install nikto
About:
Nikto is an open-source web server scanner that identifies thousands of potentially dangerous files and CGIs on insecure servers. It checks for outdated server versions, specific version-related issues, and server configuration problems. The tool provides valuable intelligence for security professionals assessing web application security posture.
Key Features:
  • Comprehensive vulnerability checks against 6700+ potentially dangerous files/CGIs
  • Server version and configuration detection
  • Plugin architecture for extensible scanning
  • Support for SSL/TLS encrypted connections
  • Proxy support and authentication mechanisms
Use Cases:
  • Penetration testing and security assessments of web infrastructure
  • Pre-deployment security validation of web applications
  • Compliance auditing for outdated or misconfigured web servers
Alternatives:
  • Nmap – Nmap is a network scanner focused on ports and services, while Nikto specializes in web application vulnerabilities
  • OpenVAS – OpenVAS provides full vulnerability management with a GUI, whereas Nikto is a lightweight command-line web scanner
Version History
Detected Version Rev Change Commit
Nov 22, 2025 12:31pm 0 VERSION_BUMP 6b9a4907
« Back to VersTracker  |  Browse Packages  |  About