From the course: Ethical Hacking: Vulnerability Analysis
Unlock the full course today
Join today to access over 22,600 courses taught by industry experts or purchase this course individually.
Nikto demo
- [Instructor] A website has many vulnerabilities and should be tested on a regular basis. Web server scanning conducts a black box test in that they do not access the source code on a web application, but they're able to identify security vulnerabilities. Nikto is built into Kali Linux, and is an open-source web server scanner. It performs complete testing on web servers for a variety of vulnerabilities such as outdated versions of servers, version-specific problems, missing headers, and dangerous files and CGIs. I'm in Kali Linux, and let's take a look at where you can find Nikto. Go to Applications, and as you can see all the tools are loaded, and there's quite a few of them. And then we go to Vulnerability Analysis, and Nikto. Now we could have opened it up in a terminal, but we can see that we have a handy shortcut. Now I'm going to scan a website, but first I'll need the IP address. Now, the website is…
Practice while you learn with exercise files
Download the files the instructor uses to teach the course. Follow along and learn by watching, listening and practicing.