312-50V13 · Question #563
Which of the following tools performs comprehensive tests against web servers, including dangerous files and CGIs?
The correct answer is A. Nikto. Nikto is a widely-used open-source web server scanner that performs comprehensive tests against web servers, checking for dangerous files, outdated software versions, CGI vulnerabilities, and other web-specific security issues - making it the perfect fit for this question. Why th
Question
Options
- ANikto
- BJohn the Ripper
- CDsniff
- DSnort
How the community answered
(48 responses)- A94% (45)
- C4% (2)
- D2% (1)
Explanation
Nikto is a widely-used open-source web server scanner that performs comprehensive tests against web servers, checking for dangerous files, outdated software versions, CGI vulnerabilities, and other web-specific security issues - making it the perfect fit for this question.
Why the distractors are wrong:
- John the Ripper (B) is a password cracking tool used to identify weak passwords through brute force and dictionary attacks - not web server scanning.
- Dsniff (C) is a network packet sniffing and credential-capturing toolkit used for network traffic analysis and man-in-the-middle attacks.
- Snort (D) is a network intrusion detection/prevention system (IDS/IPS) that monitors and analyzes network traffic for suspicious activity - not web server vulnerability scanning.
Memory Tip: Think of Nikto as a "nosy detective" that pokes and prods web servers looking for dangerous files and CGI weaknesses - the name "Nikto" sounds like "Nit-pick," which is exactly what it does to web servers, scrutinizing every detail for vulnerabilities.
Topics
Community Discussion
No community discussion yet for this question.