# Install nikto with Homebrew, apk, apt, MacPorts, Nix, pacman

Web server scanner. Version 2.6.0 via Homebrew; verified from local package data.

## Install

```sh
sudo av install brew:nikto
```

Additional install commands:

### macOS

- Homebrew (100%):

```sh
brew install nikto
```

  Evidence: local Homebrew formula metadata

- MacPorts (94%):

```sh
sudo port install nikto
```

  Evidence: MacPorts ports tree: www/nikto/Portfile from https://api.github.com/repos/macports/macports-ports/git/trees/master?recursive=1

### Linux

- apk (92%):

```sh
sudo apk add nikto
```

  Evidence: Alpine Linux edge package indexes: nikto from https://dl-cdn.alpinelinux.org/alpine/edge/community/x86_64/APKINDEX.tar.gz

- Debian apt (92%):

```sh
sudo apt install nikto
```

  Evidence: Debian stable package indexes: nikto from https://deb.debian.org/debian/dists/stable/non-free/binary-amd64/Packages.xz

- Nix (92%):

```sh
nix profile install nixpkgs#nikto
```

  Evidence: nixpkgs package indexes: pkgs/by-name/ni/nikto/package.nix from https://api.github.com/repos/NixOS/nixpkgs/git/trees/master?recursive=1

- pacman (92%):

```sh
sudo pacman -S nikto
```

  Evidence: Arch Linux sync databases: nikto from https://geo.mirror.pkgbuild.com/extra/os/x86_64/extra.db.tar.gz

## Package facts

- **Package key:** brew:nikto
- **Package manager:** Homebrew
- **Package manager page:** <https://formulae.brew.sh/formula/nikto>
- **Version:** 2.6.0
- **Source summary:** Web server scanner
- **Homepage:** <https://cirt.net/nikto/>
- **Repository:** <https://github.com/sullo/nikto>
- **Upstream docs:** <https://cirt.net/Nikto2>
- **License:** GPL-3.0-only
- **Source archive:** <https://github.com/sullo/nikto/archive/refs/tags/2.6.0.tar.gz>
- **Generated:** 2026-07-10T07:20:53+00:00

## Executables

- nikto (cli)
- replay.pl (cli)
- nikto (alias)
- replay.pl (alias)

## Uses from macOS

- perl

## Install behavior

- Post-install hook: not defined
- Bottle: available on arm64_linux, arm64_sequoia, arm64_sonoma, arm64_tahoe, sonoma, x86_64_linux

## Freshness

- Page generated: 2026-07-10
- Package-manager version: 2.6.0
- Local data: ok
- Upstream repository: https://github.com/sullo/nikto
- Upstream latest detected: 2.6.0 (current)
- info: No package-manager update timestamp was available.
## Project history and usage

Nikto is a long-running open source web server scanner aimed at penetration testers, security professionals, and system administrators. Its enduring value is not exploit automation but broad, noisy coverage: identifying dangerous files, outdated server components, common HTTP/server misconfigurations, odd headers, authentication defaults, and other findings that are useful early in web reconnaissance.

### Project history

The project history published in the Nikto wiki says Nikto 1.00 Beta was released on December 27, 2001, followed shortly by a 1.01 bug-fix release. The same history describes the 2.0 release in November 2007 as the result of several years of improvements, with development continuing on GitHub afterward. The wiki also records David Lodge joining and taking project leadership in 2008 while Chris Sullo stepped away, and Sullo rejoining in 2009.

The GitHub repository and cirt.net page show the modern project still centered on the same Perl scanner lineage. The repository lists Nikto 2.6.0 as a release on February 11, 2026, and the project page describes a scanner with updateable scan items/plugins, multiple output formats, false-positive reduction, TLS fingerprinting checks, proxy support, and database/reporting integrations.

### Adoption history

Nikto became part of the standard open-source web assessment toolkit because it is easy to run, has a large body of checks, and is available through mainstream package managers. The project's own history says that within two years of the 2001 beta it had become the most popular freely available web vulnerability scanner; modern adoption is reflected by its GitHub repository visibility and Homebrew packaging.

On 2026-07-01, the Homebrew formula page listed Nikto 2.6.0 with 7,916 installs over 365 days. That is modest compared with language/build tools, but healthy for a focused security scanner that many users run only during audits or lab work.

### How it is used

Package nerds usually treat Nikto as a quick web-server coverage pass: install it, run `nikto -h https://target.example`, add ports with `-p`, feed host lists, tune check classes, and export text, JSON, XML, HTML, CSV, SQL, or database-backed reports. The official basic testing docs emphasize host/port scans, URL input, SSL handling, multiple ports, and host files.

In practice it is often paired with nmap and proxy tooling: nmap finds HTTP services, Nikto checks them for common files and server issues, then the output is fed into manual verification or reporting. Its value is breadth and repeatability, not stealth or perfect signal.

### Why package nerds care

Nikto is the archetypal packaged Perl web scanner: old, portable, easy to bottle, still useful, and familiar enough that security distributions and package managers keep it around. For av.db, its history matters because it is a source-backed example of a security CLI whose adoption comes from workflow habit and test coverage rather than a fast-moving ecosystem.

### Timeline

- {'date': '2001-12-27', 'event': 'Nikto 1.00 Beta released.'}
- {'date': '2007-11', 'event': 'Nikto 2.0 released after several years of improvements.'}
- {'date': '2008', 'event': 'David Lodge joined and assumed project leadership.'}
- {'date': '2009', 'event': 'Chris Sullo rejoined the project.'}
- {'date': '2026-02-11', 'event': 'Nikto 2.6.0 listed as a GitHub release.'}

### Sources

- <https://cirt.net/nikto/>
- <https://formulae.brew.sh/formula/nikto>
- <https://github.com/sullo/nikto>
- <https://github.com/sullo/nikto/wiki/Basic-Testing>
- <https://github.com/sullo/nikto/wiki/History-%26-Trivia>


## Security Notes

broad file, network, media, or database tool signal. generalized runtime or code generation signal.

- **Geiger risk:** yellow / medium
- broad file, network, media, or database tool signal
- generalized runtime or code generation signal


## Configuration and credential file locations

These source-backed paths show where this package keeps local settings or durable credentials. Automic Vault can use them as review targets for secret scanning, migration, and command approval.


## Configuration files

- Unix: ./nikto.conf, ~/nikto.conf, /etc/nikto.conf
## Source Database Details

- **Source Database:** Homebrew formula API
- **Tap:** homebrew/core
- **Full Name:** nikto
- **Version Scheme:** 0
- **Revision:** 0
- **Bottle Stable Root URL:** <https://ghcr.io/v2/homebrew/core>
- **Deprecated:** no
- **Disabled:** no
- **Keg Only:** no
- **URL Keys:** stable

## Other Package-Manager Records

- Debian apt - nikto - 1:2.1.5-3.1: normalized package name match | Debian stable package indexes: nikto from https://deb.debian.org/debian/dists/stable/non-free/binary-amd64/Packages.xz | web server security scanner | http://cirt.net/nikto2
- Nix - nikto: normalized package name match | nixpkgs package indexes: pkgs/by-name/ni/nikto/package.nix from https://api.github.com/repos/NixOS/nixpkgs/git/trees/master?recursive=1
- Ubuntu apt - nikto - 1:2.1.5-3.1: normalized package name match | Ubuntu 24.04 LTS package indexes: nikto from https://archive.ubuntu.com/ubuntu/dists/noble/multiverse/binary-amd64/Packages.gz | web server security scanner | http://cirt.net/nikto2
- apk - nikto - 2.6.0-r0: normalized package name match | Alpine Linux edge package indexes: nikto from https://dl-cdn.alpinelinux.org/alpine/edge/community/x86_64/APKINDEX.tar.gz | A web application security scanner | https://www.cirt.net/Nikto2
- pacman - nikto - 2.6.0-2: normalized package name match | Arch Linux sync databases: nikto from https://geo.mirror.pkgbuild.com/extra/os/x86_64/extra.db.tar.gz | A web server scanner which performs comprehensive tests against web servers for multiple items | https://github.com/sullo/nikto
- MacPorts - nikto: normalized package name match | MacPorts ports tree: www/nikto/Portfile from https://api.github.com/repos/macports/macports-ports/git/trees/master?recursive=1


## Related links

- [Secret-risk packages](https://www.automicvault.com/pkg/secret-risk-packages/) - Has protected-tool coverage, approval-gate, or non-low Geiger security signals.
- [Terminal utility packages](https://www.automicvault.com/pkg/terminal-utilities/) - Matched terminal and command-line workflow metadata.
- [Networking and protocol packages](https://www.automicvault.com/pkg/networking-protocol-tools/) - Matched network, protocol, or remote-service metadata.
- [Security and crypto packages](https://www.automicvault.com/pkg/security-crypto-tools/) - Matched security, identity, cryptography, password, signing, or certificate metadata.
- [bomber](https://www.automicvault.com/pkg/brew/bomber/) - Shares av.db curated category or tags: cli, security, vulnerability-scanner.
- [clipsafe](https://www.automicvault.com/pkg/brew/clipsafe/) - Shares av.db curated category or tags: cli, perl, security.
- [dalfox](https://www.automicvault.com/pkg/brew/dalfox/) - Shares av.db curated category or tags: cli, security, web-security.
- [feroxbuster](https://www.automicvault.com/pkg/brew/feroxbuster/) - Shares av.db curated category or tags: cli, security, web-security.
- [ffuf](https://www.automicvault.com/pkg/brew/ffuf/) - Shares av.db curated category or tags: cli, security, web-security.
- [gobuster](https://www.automicvault.com/pkg/brew/gobuster/) - Shares av.db curated category or tags: cli, security, web-security.
- [grype](https://www.automicvault.com/pkg/brew/grype/) - Shares av.db curated category or tags: cli, security, vulnerability-scanner.
- [kpcli](https://www.automicvault.com/pkg/brew/kpcli/) - Shares av.db curated category or tags: cli, perl, security.

## Combined YAML source

View the package source record on GitHub. [combined/nikto.yml](https://github.com/automic-vault/db/blob/main/combined/nikto.yml)


## Sources

- Nucleus package database
- Geiger risk classifier
- package-page enrichment
- curated configuration and credential file locations
- curated package history
- package version freshness
- av.db category and tag curation
- package relationship graph
- external package-manager database matches
- cross-ecosystem install command graph
