Run Nikto on HTTP
reconchecklist
Summary
Scan HTTP for misconfigurations, dangerous files, and outdated software.
Walkthrough
Run Nikto against the HTTP service for known misconfigurations and outdated components. A hit is any finding flagging dangerous files, insecure headers, default content, or CVE-linked software versions.
Commands
bash
nikto -h <IP>