In this tutorial we are going to learn how to perfom vulnerability scanning of a web server using nikto.
Nikto is used to identify vulnerabilities and misconfiguration on the server that hosts web applications.
This tool will list possible vulnerabilities that can help an attacker to gain access to the target server. In the above screenshot, the target website http://testphp.vulnweb.com is not running XSS-Protection Header (possibility of XSS vulnerability) and anti-clickjacking X-Frame-Options header which can allow attackers to perform web-application based attacks on the target website.
In this way you can scan for vulnerabilitiies using nikto.
Happy Hacking:)
Nikto is used to identify vulnerabilities and misconfiguration on the server that hosts web applications.
In this way you can scan for vulnerabilitiies using nikto.
Happy Hacking:)
No comments:
Post a Comment