Scan report for "www.lyft.com"

  1. Nikto Online
  2. Scan report for "www.lyft.com"
Membership level: Free member
Summary

Found

10

Duration

56sec

Date

2026-04-26

IP

3.171.117.118

Report
Nikto scan (max 60 sec) (nikto -host www.lyft.com -maxtime 60)
- Nikto v2.6.0
---------------------------------------------------------------------------
+ Your Nikto installation is out of date.
+ Target IP:          3.171.117.118
+ Target Hostname:    www.lyft.com
+ Target Port:        80
+ Platform:           Unknown
+ Start Time:         2026-04-26 20:55:39 (GMT-4)
---------------------------------------------------------------------------
+ Server: CloudFront
+ Multiple IPs found: 3.171.117.118, 3.171.117.4, 3.171.117.70, 3.171.117.57
+ [999986] /: Retrieved via header: 1.1 6520413943966ae474ff0eab1cf98f1e.cloudfront.net (CloudFront).
+ [999962] /: Server banner changed from 'CloudFront' to 'AmazonS3'.
+ [999100] /favicon.ico: Uncommon header(s) 'x-amz-server-side-encryption' found, with contents: AES256.
+ [013587] /: Suggested security header missing: referrer-policy. See: https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Referrer-Policy
+ [013587] /: Suggested security header missing: x-content-type-options. See: https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-Content-Type-Options
+ [013587] /: Suggested security header missing: permissions-policy. See: https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Permissions-Policy
+ [013587] /: Suggested security header missing: content-security-policy. See: https://developer.mozilla.org/en-US/docs/Web/HTTP/CSP
+ [013587] /: Suggested security header missing: strict-transport-security. See: https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Strict-Transport-Security
+ [007342] /: X-Frame-Options header is deprecated and was replaced with the Content-Security-Policy HTTP header with the frame-ancestors directive. See: https://developer.mozilla.org/en-US/docs/Web/HTTP/Reference/Headers/X-Frame-Options
+ [007352] /: The X-Content-Type-Options header is not set. This could allow the user agent to render the content of the site in a different fashion to the MIME type. See: https://www.netsparker.com/web-vulnerability-scanner/vulnerabilities/missing-content-type-header/
+ 9042 requests: 0 errors and 10 items reported on the remote host
+ End Time:           2026-04-26 20:56:35 (GMT-4) (56 seconds)
---------------------------------------------------------------------------
+ 1 host(s) tested
Trustpilot
Online Nikto scanner - Online Nikto web server scanner | Product Hunt
Detailed report
Target
www.lyft.com
Target IP
3.171.117.118
Scan method
Nikto scan (max 60 sec)
Run command
nikto -host www.lyft.com -maxtime 60
Duration
Quick report
Scan date
26 Apr 2026 20:56
Copy scan report
Download report
Remove scan result
$
Check ports
API - Scan ID