Nikto
Web server scanner that probes for dangerous files, outdated software, and misconfigurations via many checks.
Why it is included
Fast baseline web surface recon still common in methodology checklists.
Best for
Quick host-level web sanity checks in authorized engagements.
Strengths
- Large test database
- Simple CLI
- LibWhisker heritage
Limitations
- Noisy; tune for target sensitivity and rate limits
Good alternatives
Nuclei · OWASP ZAP
Related tools
Security & Privacy
Nuclei
Fast vulnerability scanner driven by YAML templates—used for recon, misconfigs, CVEs, and custom checks at scale.
Security & Privacy
OWASP ZAP
OWASP flagship web app scanner and proxy: automated checks, manual request tampering, scripting, and CI integrations.
Security & Privacy
sqlmap
Automatic SQL injection and database takeover helper with fingerprinting, data exfiltration, and OS-shell paths.
Security & Privacy
httpx (ProjectDiscovery)
Fast HTTP probing CLI: status, title, tech fingerprinting, paths, and pipeline-friendly output for asset lists.
Security & Privacy
theHarvester
E-mail, subdomain, and host harvesting from search engines, PGP servers, and common OSINT APIs.
Security & Privacy
ffuf
Fast web fuzzer for directories, virtual hosts, parameters, and raw HTTP—common in bug bounty playbooks.