The Best 15 Nikto Alternatives

  • Zed Attack Proxy

    The Zed Attack Proxy (ZAP) is an easy to use integrated penetration testing tool for finding vulnerabilities in web applications.

    Free Open Source Mac OS X Windows Linux

  • skipfish

    A fully automated, active web application security reconnaissance tool. Key features: High speed: pure C code, highly optimized HTTP handling, minimal CPU footprint - easily achieving 2000 requests per second with responsive targets.

    Free Open Source Mac OS X Windows Linux BSD

  • SHODAN

    SHODAN is a search engine that lets you find specific computers (routers, servers, etc.) using a variety of filters. Some have also described it as a public port scan directory or a search engine of banners.

    Free Web

  • w3af

    w3af is a Web Application Attack and Audit Framework

    Free Open Source Windows Linux

  • Acunetix

    Audit your website security and web applications for SQL injection, Cross site scripting and other web vulnerabilities with Acunetix Web Security Scanner. Download Free...

    Commercial Windows Web Wordpress

  • Intruder

    Intruder is a security monitoring platform for internet-facing systems.

    Commercial Web

  • IronWASP

    IronWASP (Iron Web application Advanced Security testing Platform) is an open source system for web application vulnerability testing.

    Free Open Source Mac OS X Windows Linux

  • Websecurify

    Websecurify is a powerful web application security testing environment designed from the ground up to provide the best combination of automatic and manual vulnerability testing technologies.

    Commercial Mac OS X Windows Linux

  • wapiti

    Wapiti allows you to audit the security of your web applications. Wapiti is a command line tool.

    Free Open Source Windows Linux

  • Arachni

    Arachni is an Open Source, feature-full, modular, high-performance Ruby framework aimed towards helping penetration testers and administrators evaluate the security of...

    Free Open Source Mac OS X Windows Linux

  • Yang

    Yang is yet another Nikto GUI; Software for analyzing and securing your servers. Yang establish diagnostics on : - HTTP and SSL elements. - Flaws in your server...

    Commercial Mac OS X

  • Network Hotfix Scanner

    Network Hotfix Scanner is a free advanced hotfix check utility that scans network computers for missing hotfixes and patches, and helps you download and install them....

    Free Windows

  • Golem Security Scanner

    Golem Security Scanner is a powerful and intuitive website security scanner which uses a combination of proprietary and open source scanners to maximize the scan...

    Freemium Web

  • Ammonite

    Ammonite is a web application security scanner extension for Fiddler. Ammonite detects common vulnerabilities such as SQL injection, OS command injection, cross-site...

    Commercial Windows Fiddler