macOS
brew install niktolocal Homebrew formula metadata
sudo port install niktoMacPorts ports tree · www/nikto/Portfile · source: api.github.com
brew
Web server scanner. Version 2.6.0 via Homebrew; verified from local package data.
install
brew install niktolocal Homebrew formula metadata
sudo port install niktoMacPorts ports tree · www/nikto/Portfile · source: api.github.com
sudo apk add niktoAlpine Linux edge package indexes · nikto · source: dl-cdn.alpinelinux.org
sudo apt install niktoDebian stable package indexes · nikto · source: deb.debian.org
nix profile install nixpkgs#niktonixpkgs package indexes · pkgs/by-name/ni/nikto/package.nix · source: api.github.com
sudo pacman -S niktoArch Linux sync databases · nikto · source: geo.mirror.pkgbuild.com
overview
Web server scanner
history
Nikto is a long-running open source web server scanner aimed at penetration testers, security professionals, and system administrators. Its enduring value is not exploit automation but broad, noisy coverage: identifying dangerous files, outdated server components, common HTTP/server misconfigurations, odd headers, authentication defaults, and other findings that are useful early in web reconnaissance.
The project history published in the Nikto wiki says Nikto 1.00 Beta was released on December 27, 2001, followed shortly by a 1.01 bug-fix release. The same history describes the 2.0 release in November 2007 as the result of several years of improvements, with development continuing on GitHub afterward. The wiki also records David Lodge joining and taking project leadership in 2008 while Chris Sullo stepped away, and Sullo rejoining in 2009.
The GitHub repository and cirt.net page show the modern project still centered on the same Perl scanner lineage. The repository lists Nikto 2.6.0 as a release on February 11, 2026, and the project page describes a scanner with updateable scan items/plugins, multiple output formats, false-positive reduction, TLS fingerprinting checks, proxy support, and database/reporting integrations.
Nikto became part of the standard open-source web assessment toolkit because it is easy to run, has a large body of checks, and is available through mainstream package managers. The project's own history says that within two years of the 2001 beta it had become the most popular freely available web vulnerability scanner; modern adoption is reflected by its GitHub repository visibility and Homebrew packaging.
On 2026-07-01, the Homebrew formula page listed Nikto 2.6.0 with 7,916 installs over 365 days. That is modest compared with language/build tools, but healthy for a focused security scanner that many users run only during audits or lab work.
Package nerds usually treat Nikto as a quick web-server coverage pass: install it, run `nikto -h https://target.example`, add ports with `-p`, feed host lists, tune check classes, and export text, JSON, XML, HTML, CSV, SQL, or database-backed reports. The official basic testing docs emphasize host/port scans, URL input, SSL handling, multiple ports, and host files.
In practice it is often paired with nmap and proxy tooling: nmap finds HTTP services, Nikto checks them for common files and server issues, then the output is fed into manual verification or reporting. Its value is breadth and repeatability, not stealth or perfect signal.
Nikto is the archetypal packaged Perl web scanner: old, portable, easy to bottle, still useful, and familiar enough that security distributions and package managers keep it around. For av.db, its history matters because it is a source-backed example of a security CLI whose adoption comes from workflow habit and test coverage rather than a fast-moving ecosystem.
security posture
broad file, network, media, or database tool signal. generalized runtime or code generation signal.
yellow risk · medium confidence · runtime
Before unattended agent use, check whether the tool reads plaintext credentials, writes remote state, publishes artifacts, or shells out to plugins.
local files
These source-backed paths show where this package keeps local settings or durable credentials. Automic Vault can use them as review targets for secret scanning, migration, and command approval.
Config paths the tool may read or write during local use.
./nikto.conf~/nikto.conf/etc/nikto.confexecutables
| Command | Kind | Exposure | Note |
|---|---|---|---|
nikto | cli | global executable | |
replay.pl | cli | global executable |
freshness
These signals separate page generation age, package-manager activity, and upstream release comparison. Version lag is warned only when an evidence URL and comparable versions are present.
https://github.com/sullo/nikto
install metadata
| Package key | brew:nikto |
|---|---|
| Version | 2.6.0 |
| Package manager | Homebrew |
| Package manager page | https://formulae.brew.sh/formula/nikto |
| Homepage | https://cirt.net/nikto/ |
| Repository | https://github.com/sullo/nikto |
| Upstream docs | https://cirt.net/Nikto2 |
| License | GPL-3.0-only |
| Source archive | https://github.com/sullo/nikto/archive/refs/tags/2.6.0.tar.gz |
| Uses from macOS | perl |
| Bottle | available (on arm64_linux, arm64_sequoia, arm64_sonoma, arm64_tahoe, sonoma, x86_64_linux) |
| Homebrew post-install | not defined |
| Service | none declared |
registry facts
| Source Database | Homebrew formula API |
|---|---|
| Tap | homebrew/core |
| Full Name | nikto |
| Version Scheme | 0 |
| Revision | 0 |
| Bottle Stable Root URL | https://ghcr.io/v2/homebrew/core |
| Deprecated | no |
| Disabled | no |
| Keg Only | no |
| URL Keys |
|
source database matches
Matches are pulled from external package-manager indexes and kept separate from local Automic Vault package links.
nikto 1:2.1.5-3.1
web server security scanner
sudo apt install niktonikto
nix profile install nixpkgs#niktonikto 1:2.1.5-3.1
web server security scanner
sudo apt install niktonikto 2.6.0-r0
A web application security scanner
sudo apk add niktonikto 2.6.0-2
A web server scanner which performs comprehensive tests against web servers for multiple items
https://github.com/sullo/nikto
sudo pacman -S niktonikto
sudo port install niktosource trail
This page is generated by av-web from the private package SQLite artifact built by scripts/generate-pkg-sqlite.py.
View the package source record on GitHub.