Which statement describes Nikto's scanning focus?

Boost your skills for the EC-Council Certified Ethical Hacker v13 Exam. Use flashcards and multiple choice questions to prepare effectively. Each question includes hints and explanations. Get exam-ready now!

Multiple Choice

Which statement describes Nikto's scanning focus?

Explanation:
Nikto is a web server vulnerability scanner. Its purpose is to identify security issues on web servers by scanning for dangerous files and CGI scripts, misconfigurations, and outdated server software. It checks common web directories, looks for default or easily exploitable files, tests for insecure configurations, and flags outdated software versions that could be exploited. That focus on web server weaknesses is why the statement describing scanning for dangerous files/CGIs, outdated server software, and other security issues is the best match. It isn’t about watching live traffic (that’s more like an intrusion detection approach), mapping network topology, or brute-forcing SSH passwords, which are functions of other tools.

Nikto is a web server vulnerability scanner. Its purpose is to identify security issues on web servers by scanning for dangerous files and CGI scripts, misconfigurations, and outdated server software. It checks common web directories, looks for default or easily exploitable files, tests for insecure configurations, and flags outdated software versions that could be exploited. That focus on web server weaknesses is why the statement describing scanning for dangerous files/CGIs, outdated server software, and other security issues is the best match. It isn’t about watching live traffic (that’s more like an intrusion detection approach), mapping network topology, or brute-forcing SSH passwords, which are functions of other tools.

More Multiple Choice Questions
Subscribe

Get the latest from Examzify

You can unsubscribe at any time. Read our privacy policy