Which statement describes Nikto's scanning focus?

Study for the EC-Council Certified Ethical Hacker (CEH) v13 Exam. Utilize flashcards and multiple-choice questions with helpful hints and detailed explanations. Excel in your exam preparation!

Multiple Choice

Which statement describes Nikto's scanning focus?

Explanation:
Nikto is a web server vulnerability scanner. Its purpose is to identify security issues on web servers by scanning for dangerous files and CGI scripts, misconfigurations, and outdated server software. It checks common web directories, looks for default or easily exploitable files, tests for insecure configurations, and flags outdated software versions that could be exploited. That focus on web server weaknesses is why the statement describing scanning for dangerous files/CGIs, outdated server software, and other security issues is the best match. It isn’t about watching live traffic (that’s more like an intrusion detection approach), mapping network topology, or brute-forcing SSH passwords, which are functions of other tools.

Nikto is a web server vulnerability scanner. Its purpose is to identify security issues on web servers by scanning for dangerous files and CGI scripts, misconfigurations, and outdated server software. It checks common web directories, looks for default or easily exploitable files, tests for insecure configurations, and flags outdated software versions that could be exploited. That focus on web server weaknesses is why the statement describing scanning for dangerous files/CGIs, outdated server software, and other security issues is the best match. It isn’t about watching live traffic (that’s more like an intrusion detection approach), mapping network topology, or brute-forcing SSH passwords, which are functions of other tools.

More Multiple Choice Questions
Subscribe

Get the latest from Passetra

You can unsubscribe at any time. Read our privacy policy