nikto
Nikto is web server scanner which performs comprehensive tests against web servers for multiple items, including over 6700 potentially dangerous files/programs, checks for outdated versions of over 1250 servers, and version specific problems on over 270 servers.
Details
Category: Scanners
Publisher: trickest
Created Date: 9/7/2021
Container: quay.io/trickest/nikto:dc98b86
Source URL: https://github.com/sullo/nikto
Parameters
Command:
-host - Target hostCommand:
-port - Port to use (default 80)Command:
-useproxy - Use the proxy defined in nikto.conf, or argument http://server:portCommand:
-until - Run until the specified time or durationCommand:
-vhost - Virtual host (for Host header)Command:
-Format - Output file format (Options: csv, html, nbe, txt, xml)Command:
-mutate - Guess additional file namesCommand:
-no404 - Disables nikto attempting to guess a 404 pageCommand:
-nossl - Disables the use of SSLCommand:
-dbcheck - Check database and other key files for syntax errorsCommand:
-Display - Turn on/off display outputs (options: 1, 2, 3, 4, D, E, P, S, V)Command:
-maxtime - Maximum testing time per host (e.g., 1h, 60m, 3600s)Command:
-timeout - Timeout for requests (default 10 seconds)Command:
-Userdbs - Load only user databases, not the standard databasesCommand:
-Cgidirs - Scan these CGI dirs: none, all, or values like /cgi/ /cgi-a/Command:
-nolookup - Disables DNS lookupsCommand:
-RSAcert - Client certificate fileCommand:
-ssl - Force ssl mode on portCommand:
-IgnoreCode - Ignore Codes--treat as negative responsesCommand:
-config - Use this config fileCommand:
-useragent - Over-rides the default useragentCommand:
-Tuning - Scan tuning:Command:
-mutate-options - Provide information for mutatesCommand:
-root - Prepend root value to all requests, format is /directoryCommand:
-key - Client certificate key fileCommand:
-evasion - Encoding techniqueCommand:
-id - Host authentication to use, format is id:pass or id:pass:realm