[Nikto-discuss] Nikto Capabilities
raymond lukanta
raymond_pluto at hotmail.com
Sat Jan 4 11:00:15 CST 2014
I have a question about Nikto capabilities. In the Nikto description, it is said that Nikto is a web server scanner. But, in the -Tuning option (http://cirt.net/nikto2-docs/options.html#id2741238), there're a test for SQL injection and XSS. Actually, it makes me confused.
I need explanation why Nikto do the test for SQL injection and XSS. Because I think, injection and XSS is web application related (CMIIW).
Thanks.
--Raymond
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://attrition.org/pipermail/nikto-discuss/attachments/20140105/bee9b0fc/attachment.html>
More information about the Nikto-discuss
mailing list