Nikto – web server scanner | find exploits :)

Nikto is an Open Source (GPL) web server scanner which performs comprehensive tests against web servers for multiple items, including over 3500 potentially dangerous files/CGIs, versions on over 900 servers, and version specific problems on over 250 servers. Scan items and plugins are frequently updated and can be automatically updated (if desired).

Basically -Nikto (a PERL software) is a web server assessment tool and It is designed to find various default and insecure files, configurations and programs on any type of web server.

Nikto is built on LibWhisker and can run any platform which has a PERL runtime, and supports SSL, proxies, host authentication, IDS evasion and more. It can be updated automatically from the command-line, and supports the optional submission of updated version data back to the maintainers.

Interesting 🙂 :-

The name “Nikto” is taken from the movie “The Day the Earth Stood Still”, and of course subsequent abuse by Bruce Campbell in “Army of Darkness”. More information on the pop-culture popularity of Nikto can be found at