← Back to search

Run Nikto on HTTP

reconchecklist

Summary

Scan HTTP for misconfigurations, dangerous files, and outdated software.

Walkthrough

Run Nikto against the HTTP service for known misconfigurations and outdated components. A hit is any finding flagging dangerous files, insecure headers, default content, or CVE-linked software versions.

Commands

bash

nikto -h <IP>