Knowledgebase

  1. Portal Home
  2. Knowledgebase
  3. Operating Systems
  4. Ubuntu
  5. How to Use Nikto Web Scanner on Ubuntu

  Categories

23
Accounts
 16
App Platform
 8
Backups
 7
Billing
 4
Connectivity Troubleshooting
 148
Data Management
 1
Ddos
 197
Development
 13
DNS
 41
Game Servers
 5
Hosting Packages
 97
Infrastructure
 6
IPv6
 48
Kubernetes
 11
Load Balancers
 34
Machine Learning
 10
MongoDB
 1
Monitoring
 21
MySQL
 14
Networking
 1039
Operating Systems
 21
PostgreSQL
 1
Private Internet Guardian (VPN)
 1
Products
 7
Redis
 100
Reference Guides
 4
Resellers
 6
Reserved IPs
 86
Server
 322
Server Apps
 7
Site Management Tools
 1
SnapShooter
 16
Snapshots
 3
Spaces
 4
SSH Troubleshooting
 5
SSL
 2
Streaming and Broadcasting
 23
Support Plans FAQ
 2
Teams
 6
Third-Party Applications
 5
Volumes
 1
VPC
 2
Windows Security

  Categories

  Support

  My Support Tickets   Announcements   Knowledgebase   Downloads   Network Status   Open Ticket

How to Use Nikto Web Scanner on Ubuntu Print

  • 0

Introduction

Nikto is an open-source web vulnerability scanner based on Perl. It can scan for insecure files and programs, software misconfigurations, and other potential threats within the server. In this article, you will learn how to install and use Nikto to scan your Ubuntu server.

Do not scan servers without permission. Unauthorized scanning on Rcs's network may result in account termination.

Prerequisites

1. Install Nikto

Nikto is available in the default repositories.

$ sudo apt install nikto -y

2. Scan Server using Nikto

We will use Nikto to perform various types of Web Scanning. You can install Apache2 and add virtual hosts to run on different ports for testing purposes. The site or port being scanned must be open and running an application to get an appropriate result.

$ sudo apt install apache2 -y

Examples

These are a few examples that show how to use Nikto.

  • Scan a web server with an IP address 192.0.2.10:

      $ sudo nikto -host 192.0.2.10

  • Scan port 8080 of a web server with an IP address 192.0.2.10:

      $ sudo nikto -h 192.0.2.10 -p 8080

  • If your server has multiple virtual hosts listening on different ports, you can specify them as a comma-separated list. This command will scan two ports: 8080 and 9090.

      $ sudo nikto -h 192.0.2.10 -p 8080,9090

  • You can scan a range of ports by specifying the start and end of the port range. This command will scan all ports from 8080 to 9090.

      $ sudo nikto -h 192.0.2.10 -p 8080-9090

  • Scan a server by URL:

      $ sudo nikto -h http://example.com

  • Scan a URL at a specific port. Two syntax options are available.

      $ sudo nikto -h http://example.com -p 8080

  $ sudo nikto -h http://example.com:8080

Scan Multiple Hosts

To scan multiple hosts, create a file containing a list of target hosts, one per line. For example, create a file named scan-targets with the following:

http://example.com:8080
192.0.2.10:8888
192.0.2.11

To scan all the hosts defined in the file scan-targets:

$ sudo nikto -h scan-targets

How to Use a Proxy

To scan through a proxy server, use the -useproxy option. Set the proxy details on the configuration file, /etc/nikto/config.txt.

PROXYHOST=192.0.2.10
PROXYPORT=8080
PROXYUSER=username
PROXYPASS=password

After defining the proxy details, run the scan. For example:

$ sudo nikto -h 192.0.2.11 -useproxy

More Information

Show basic description of various command options available for running scans.

$ sudo nikto

Show more details about the options available.

$ sudo nikto -H

References

For more information on Nikto, please see the official documentation.

Introduction Nikto is an open-source web vulnerability scanner based on Perl. It can scan for insecure files and programs, software misconfigurations, and other potential threats within the server. In this article, you will learn how to install and use Nikto to scan your Ubuntu server. Do not scan servers without permission. Unauthorized scanning on Rcs's network may result in account termination. Prerequisites Deploy a fully updated Rcs Ubuntu Server. Create a non-root user with sudo access. 1. Install Nikto Nikto is available in the default repositories. $ sudo apt install nikto -y 2. Scan Server using Nikto We will use Nikto to perform various types of Web Scanning. You can install Apache2 and add virtual hosts to run on different ports for testing purposes. The site or port being scanned must be open and running an application to get an appropriate result. $ sudo apt install apache2 -y Examples These are a few examples that show how to use Nikto. Scan a web server with an IP address 192.0.2.10: $ sudo nikto -host 192.0.2.10 Scan port 8080 of a web server with an IP address 192.0.2.10: $ sudo nikto -h 192.0.2.10 -p 8080 If your server has multiple virtual hosts listening on different ports, you can specify them as a comma-separated list. This command will scan two ports: 8080 and 9090. $ sudo nikto -h 192.0.2.10 -p 8080,9090 You can scan a range of ports by specifying the start and end of the port range. This command will scan all ports from 8080 to 9090. $ sudo nikto -h 192.0.2.10 -p 8080-9090 Scan a server by URL: $ sudo nikto -h http://example.com Scan a URL at a specific port. Two syntax options are available. $ sudo nikto -h http://example.com -p 8080 $ sudo nikto -h http://example.com:8080 Scan Multiple Hosts To scan multiple hosts, create a file containing a list of target hosts, one per line. For example, create a file named scan-targets with the following: http://example.com:8080 192.0.2.10:8888 192.0.2.11 To scan all the hosts defined in the file scan-targets: $ sudo nikto -h scan-targets How to Use a Proxy To scan through a proxy server, use the -useproxy option. Set the proxy details on the configuration file, /etc/nikto/config.txt. PROXYHOST=192.0.2.10 PROXYPORT=8080 PROXYUSER=username PROXYPASS=password After defining the proxy details, run the scan. For example: $ sudo nikto -h 192.0.2.11 -useproxy More Information Show basic description of various command options available for running scans. $ sudo nikto Show more details about the options available. $ sudo nikto -H References For more information on Nikto, please see the official documentation.
Was this answer helpful?

Related Articles

How to Deploy a Multi-Node Apache Cassandra Database Cluster on Ubuntu 22.04 Introduction A multi-node Apache Cassandra database cluster contains two or more database... How to Install and Secure the Apache Cassandra Database Server On Ubuntu 22.04 Introduction Apache Cassandra is a free open-source NoSQL database server commonly used with... How to Deploy Apache Airflow on Ubuntu 20.04 Introduction Apache Airflow is an open-source data platform to author, schedule, and monitor... How to Configure a New Ubuntu Server with Ansible .article--sm, .article--sm .alert { font-size: 15px; line-height: 24px;... Install Redmine on Ubuntu 20.04 .article--sm, .article--sm .alert { font-size: 15px; line-height: 24px;...
Back

Powered by WHMCompleteSolution

  Support

  My Support Tickets   Announcements   Knowledgebase   Downloads   Network Status   Open Ticket