Alternatives

Zed Attack Proxy

Zed Attack Proxy (ZAP) is an open source security and privacy application designed to help web application security professionals assess the security of their web applications. It is a powerful tool that can be used to test the security of web applications, detect common vulnerab...

Shodan

Shodan is a search engine that allows users to discover and explore the Internet through a powerful set of tools and filters. It scans the Internet and indexes connected devices, services, and ports and presents them in an organized manner for easy access and review. Shodan provi...

Nikto is a relatively comprehensive web application scanner, SHODAN is a search engine for connected devices with open ports. They are not really that similar and their intended purpose is much more different.

Guest

Acunetix

Acunetix is a web application security scanner that helps organizations detect and fix vulnerabilities in their web applications, websites, and web services. It is a comprehensive and automated security scanner that can detect hundreds of different vulnerabilities, including SQL ...

skipfish

Skipfish is a web application security reconnaissance tool. It is designed to scan web applications to detect security issues and vulnerabilities. It is an automated, active web application security reconnaissance tool written in C. It performs a recursive crawl and dictionary-ba...

Skipfish is no longer maintained. The latest version, 2.10 beta, released in December 2012, is still available for download from Google Code Archive

Guest

w3af

W3af is an open source web application security scanner designed to identify and exploit web application vulnerabilities. It is a powerful and highly configurable tool that can detect a wide range of web application threats, including SQL injection, cross-site scripting, file inc...

IronWASP

IronWASP is an open source web application security scanning platform which is designed to assess the security of web applications, detect vulnerabilities, and provide guidance on how to remediate them. It is a comprehensive suite of tools that covers the complete range of securi...

Intruder

An Intruder app (or website) is a security and privacy application that helps protect a user's private data from unauthorized access. It monitors a user's activity and blocks any suspicious activity or attempts to access the user's data. It also provides logging and reporting fea...

wapiti

Wapiti is a free and open-source application designed to scan web applications for known vulnerabilities. It performs black-box scans and can be used to detect a variety of problems such as SQL injection, cross-site scripting, and directory traversal. Wapiti is written in Python ...

Arachni

Arachni is a web application security scanner designed to help organizations identify and address potential security vulnerabilities in their web applications. It is a free, open source tool that is used to detect and identify known and unknown vulnerabilities in web applications...

Websecurify

Websecurify is a comprehensive cloud-based security and privacy application designed to help organizations of all sizes secure and protect their web applications, websites, and mobile applications. It provides a comprehensive suite of automated security testing and vulnerability ...

HTTPCS Security

HTTPCS Security is an application and website security solution designed to help organizations protect their web applications from malicious attacks. It provides an integrated suite of security capabilities, including real-time monitoring, intrusion detection, web application fir...

Yang

Yang is a security and privacy application designed to protect users from malicious cyber threats. It provides a suite of features that help users protect their personal information, guard against malware and phishing attacks, and monitor the security of their devices. The app al...

PENTESTON

PENTESTON is a cyber security and privacy application that provides tools and services for penetration testing (pentesting) networks, systems, and applications. It helps to uncover security vulnerabilities in order to help organizations protect their systems from malicious actors...

Network Hotfix Scanner

Network Hotfix Scanner is an application (or website) that helps organizations identify and patch security vulnerabilities in their network. It scans the entire network and checks for any missing patches or outdated software that could make the network vulnerable to cyber threats...

Ammonite

Ammonite is a powerful development software and application that is used to create and manage web-based applications. It is built on the popular Node.js platform, and provides users with an intuitive, easy-to-use interface. It provides users with a comprehensive set of developmen...

Golem Security Scanner

Golem Security Scanner is a comprehensive security scanning application that helps users detect and manage security risks associated with Internet-connected devices. It scans devices and networks for potential security risks, identifies any malicious activity, and provides detail...

Nikto Comments

No Comments

Nikto Reviews

By n----- · Dec 2013

Nikto es una alternativa a Nessus, pero ambas no son satisfactorias. Si bien Nessus solo le permite escanear su propia red de área local sin comprar una licencia terriblemente costosa, nikto no se mantiene actualizado. Hoy, el último registro de cambios para mí fue de 12 meses. eso no parece correcto cuando se trata de seguridad. Después de probar muchas de estas herramientas que solo hacen uso de NMAP y una fuente de CVE, considero que openVAS es la mejor opción.

Nikto

Description

Categories