Analyze Your Site

  1. Vulnerability Scanner
  2. Identify servers and software
  3. Detect XSS vulnerabilities
Visibility:
Scan method:
[scan_method]
Some firewalls blocks Nikto. For get true positive results add nikto.online IP addresses (172.96.166.66-172.96.166.70 or CIDR 172.96.166.64/29) to the whitelist

Recent scan history

Site address Scan method Site IP Duration Size Reported
elenalev.gallery.photo Nikto scan (max 60 sec) 190.115.31.124 81s 1.92 KB 10 item(s)
cscclub.in Nikto scan (max 60 sec) 89.117.188.78 61s 1.69 KB 7 item(s)
45.115.219.68 Nikto scan (max 60 sec) 45.115.219.68 61s 1.69 KB 7 item(s)
tigo.com.ec Nikto scan (max 60 sec) 104.18.22.46 94s 2.02 KB 8 item(s)
tryhackme.com Nikto scan (max 60 sec) 64.239.123.193 61s 2.61 KB 11 item(s)
www.dubicars.com Nikto scan (max 60 sec) 104.18.27.102 82s 2.03 KB 8 item(s)
developer.apple.com Nikto scan (max 60 sec) 17.253.3.198 61s 1.76 KB 7 item(s)
google.com Nikto scan (max 60 sec) 142.251.167.102 61s 2.05 KB 8 item(s)
demo.testfire.net Nikto scan (max 60 sec) 65.61.137.117 61s 1.52 KB 6 item(s)
discord.com Nikto scan (max 60 sec) 162.159.137.232 96s 2.09 KB 8 item(s)

All the Features

Discover a comprehensive platform designed for ultimate flexibility and security. Packed with premium features, this solution empowers your team to tackle vulnerabilities efficiently while enhancing customer communication.

Accessible on Any Device

Dedicated Customer Support

Domain subversion detect

Protocol check

Sensitive file check

Sensitive info check

Misconfig detect

Test page scan

CSRF token check

SSL cert validation

Server obfuscation

HTTP methods test

Banner grab

No Installation Required

Effortless Scalability

Intuitive Dashboard

Seamless API Integrations

Redirect handling

XSS detect

Response handle

Error detect

Error log check

Robots.txt parse

HTTP options scan

Insecure HTTP headers

Config check

Vulnerability scan

Outdated server check

Risky file detection

Information Disclosure

Server software scan

SSL check

Web server ID

Server version ID

Framework check

Language path scan

CVE monitor

Temp file detect

Backup file check

Default file check

Directory traversal check

Full scan coverage

SSL/TLS check

Cookies check

Nikto Online

Why nikto.online?

With Nikto Online Scanner, you can swiftly assess the security of your web servers. 

Web-Based Operation

Perform all tasks directly from the web interface. No need for complex setups or installations. Simply access our platform online and conduct security checks conveniently from any device with internet access.

Intuitive Interface

Run Nikto security scanner tool without needing to know any commands. Our user-friendly interface allows you to initiate scans effortlessly, even without extensive technical knowledge.

Latest Updates

Stay ahead of emerging threats by checking security with the latest updates. Our platform ensures that you are equipped with the most up-to-date vulnerability signatures and detection techniques, enhancing the effectiveness of your security assessments.

Useful Links

  • Online SQL injection tool (sqlmap.online)
  • Online Port scanner (portscanner.online)
  • Simulate DDoS Attack Online (ddosattack.online)
  • Online Wordpress Security Scanner (wpscan.online)

Latest Cybersecurity News & Insights

Explore recent news, in-depth articles, and expert analysis on vulnerability scanning, penetration testing, and emerging attacks.

Ubiquiti Patches Critical UniFi Flaws Across Connect, Talk, Access, Protect, and OS

Ubiquiti has shipped updates to address multiple critical security flaws impacting UniFi ...

Felons, Fraudsters Flog Offensive Cybersecurity Startup

A cybersecurity startup dangling millions of dollars to acquire zero-day security ...

Google Dialogflow CX Bug Allowed Attackers to Hijack AI Conversations

The "Rogue Agent" vulnerability could have enabled attackers to silently manipulate AI ...

Critical Vulnerability Exposes GitHub Agentic Workflows to Prompt Injection

Researchers show how attackers can use a crafted public GitHub Issue to trick AI-powered ...

15-Year-Old GhostLock Flaw Enables Root and Container Escape on Most Linux Distros

Researchers at Nebula Security have disclosed GhostLock (CVE-2026-43499), a ...

CISA Adds 4 Actively Exploited Adobe, Joomla, and Langflow Flaws to KEV

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday added four ...

Critical Gitea Flaw Under Active Exploitation, Researchers Warn

Attackers are exploiting the critical Gitea vulnerability CVE-2026-20896 to bypass ...

DEBULL Tooling Abuses Microsoft Device-Code Flow to Target M365 Accounts

A Microsoft 365 device code phishing campaign has been observed leveraging ...