LSE toolsLSE toolsNikto (242)Nikto (242)

Tool and Usage

Project details
LicensesGPLv2, Multi-license
Programming languagePerl
AuthorDavid Lodge
Latest release2.1.6 []

Project health

This score is calculated by different factors, like project age, last release date, etc.

Why this tool?

Nikto helps with performing security scans against web servers and to search for vulnerabilities in web applications.

Background information

Note: the data files of Nikto are not released under GPL. Embedding them in your projects may require permission of the author.

Usage and audience

Nikto is commonly used for penetration testing, security assessment, or web application analysis. Target users for this tool are developers, pentesters, and security professionals.

Tool review and remarks

The review and analysis of this project resulted in the following remarks for this security tool:


  • + The source code of this software is available
  • + Well-known tool

Author and Maintainers

Nikto is under development by David Lodge. This project is currently maintained by Chris Sullo, David Lodge.


Supported operating systems

Nikto is known to work on Linux.

Nikto alternatives

Similar tools to Nikto:



Web Application Security Scanner aimed towards helping users evaluate the security of web applications



Security header check (shcheck) is a security tool to scan web applications and their HTTP headers. It can help securing web applications or detect weaknesses.



Wapiti is a security tool to perform vulnerability scans on web applications. It uses fuzzing to detect known and unknown paths, among other tests.

All Nikto alternatives

Found an improvement? Help the community by submitting an update.

Related tool information


This tool is categorized as a web application scanner and website security audit tool.