Scan report for "www.bkash.com"

  1. Nikto Online
  2. Scan report for "www.bkash.com"
Membership level: Free member
Summary

Found

6

Duration

6sec

Date

2026-04-07

IP

104.18.13.30

Report
Nikto SSL scan (max 60 sec) (nikto -host www.bkash.com -ssl -maxtime 60)
- Nikto v2.6.0
---------------------------------------------------------------------------
+ Your Nikto installation is out of date.
+ Target IP:          104.18.13.30
+ Target Hostname:    www.bkash.com
+ Target Port:        443
---------------------------------------------------------------------------
+ SSL Info:           Subject:  /businessCategory=Private Organization/serialNumber=C-82849/jurisdictionC=BD/C=BD/ST=Dhaka/L=Dhaka/O=bKash Limited/CN=www.bkash.com
                      CN:       www.bkash.com
                      SAN:      www.bkash.com, bkash.com
                      Ciphers:  TLS_AES_256_GCM_SHA384
                      Issuer:   /C=BE/O=GlobalSign nv-sa/CN=GlobalSign Extended Validation CA - SHA256 - G3
+ Platform:           Unknown
+ Start Time:         2026-04-07 15:56:50 (GMT-4)
---------------------------------------------------------------------------
+ Server: cloudflare
+ Multiple IPs found: 104.18.13.30, 104.18.12.30, 2606:4700::6812:d1e, 2606:4700::6812:c1e
+ [999106] /: Cloudflare detected via cf-ray header. Recommend proxying via Burp or mitmproxy to avoid TLS fingerprint blocks. See: https://github.com/sullo/nikto/wiki/Using-a-Proxy
+ No CGI Directories found (use '-C all' to force check all possible dirs). CGI tests skipped.
+ [999966] /: The Content-Encoding header is set to "deflate" which may mean that the server is vulnerable to the BREACH attack. See: http://breachattack.com/
+ [013587] /: Suggested security header missing: x-content-type-options. See: https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-Content-Type-Options
+ [013587] /: Suggested security header missing: permissions-policy. See: https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Permissions-Policy
+ [013587] /: Suggested security header missing: content-security-policy. See: https://developer.mozilla.org/en-US/docs/Web/HTTP/CSP
+ [013587] /: Suggested security header missing: strict-transport-security. See: https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Strict-Transport-Security
- STATUS: Completed 119 requests (~2% complete, ~6.0 minutes left): currently in plugin 'Site Files'
- STATUS: Running average: Not enough data.
+ Scan terminated: 20 errors and 6 items reported on the remote host
+ End Time:           2026-04-07 15:56:56 (GMT-4) (6 seconds)
---------------------------------------------------------------------------
+ 1 host(s) tested
Trustpilot
Online Nikto scanner - Online Nikto web server scanner | Product Hunt
Detailed report
Target
www.bkash.com
Target IP
104.18.13.30
Scan method
Nikto SSL scan (max 60 sec)
Run command
nikto -host www.bkash.com -ssl -maxtime 60
Duration
Quick report
Scan date
07 Apr 2026 15:56
Copy scan report
Download report
Remove scan result
$
Total scans
Check ports
API - Scan ID