Nikto

Nikto is a tool I really should use more often. It is a webserver enum software which is quite expandable with its built in plugins.
I’ve started using it for CTFs, but more as a sanity check after the manual tasks; it can take a while to run.

---

Basic usage

The ‘quick’ version for site enum

nikto -h [ip]

• -h: The host IP of the server

Plugins

• –list-plugins: List all plugins

• -plugins: add your plugin name, if you dont define one, it runs all