AlternativeTo Logo

Nikto Alternatives for Linux

There are many alternatives to Nikto for Linux if you are looking for a replacement. The best Linux alternative is OWASP Zed Attack Proxy (ZAP), which is both free and Open Source. If that doesn't suit you, our users have ranked more than 10 alternatives to Nikto and seven of them are available for Linux so hopefully you can find a suitable replacement. Other interesting Linux alternatives to Nikto are w3af, Websecurify, wapiti and Arachni.

This page was last updated
Nikto iconNikto
  20
  • FreeOpen Source
  • Mac
  • Windows
  • Linux

Nikto is an Open Source (GPL) web server scanner which performs comprehensive tests against web servers for multiple items,...

Learn more about Nikto

  1. OWASP Zed Attack Proxy (ZAP) icon

    OWASP Zed Attack Proxy (ZAP)

    • FreeOpen Source
    • Mac
    • Windows
    • Linux

    The Zed Attack Proxy (ZAP) is an easy to use integrated penetration testing tool for finding vulnerabilities in web applications.

    Suggest and vote on features
    Screenshot
  2. w3af icon

    w3af

    • FreeOpen Source
    • Windows
    • Linux

    w3af is a Web Application Attack and Audit Framework.

    Suggest and vote on features
    Main screen with OSWASP_TOP10 testing profile selected.


  3. Websecurify icon

    Websecurify

    • Mac
    • Windows
    • Linux

    Websecurify is a powerful web application security testing environment designed from the ground up to provide the best combination of automatic and manual vulnerability testing technologies.

    Suggest and vote on features
    No screenshots yet
  4. wapiti icon

    wapiti

    • FreeOpen Source
    • Windows
    • Linux

    Wapiti allows you to audit the security of your web applications. Wapiti is a command line tool.

    ⚫︎ Command line interfacewapiti either have CLI support or is a CLI-only app.
    Suggest and vote on features
    No screenshots yet
  5. Arachni

    • FreeOpen Source
    • Mac
    • Windows
    • Linux

    Arachni is an Open Source, feature-full, modular, high-performance Ruby framework aimed towards helping penetration testers and administrators evaluate the security of web applications.

    Suggest and vote on features
    No screenshots yet


  6. skipfish icon

    skipfish

    • FreeOpen Source
    • Mac
    • Windows
    • Linux
    • BSD

    A fully automated, active web application security reconnaissance tool. Key features: High speed: pure C code, highly optimized HTTP handling, minimal CPU footprint - easily achieving 2000 requests per second with responsive targets.

    ⚫︎ Command line interfaceskipfish either have CLI support or is a CLI-only app.
    Suggest and vote on features

    Discontinued

    Skipfish is no longer maintained. Last version, 2.10 beta, released in December 2012, can be still downloaded from Google Code Archive

    at work, during scanning
  7. nuclei icon

    nuclei

    • FreeOpen Source
    • Windows
    • Mac
    • Linux

    Nuclei is used to send requests across targets based on a template, leading to zero false positives and providing fast scanning on a large number of hosts. Nuclei offers scanning for a variety of protocols, including TCP, DNS, HTTP, SSL, File, Whois, Websocket, Headless etc.

    Suggest and vote on features
    How it works
Showing 7 of 7 alternatives