Nikto vs. Titania Nipper

Nikto is well suited for scanning web server-related vulnerabilities for small and medium enterprises. We can utilise it for checking server default files and security misconfigurations. It is not suited well for some users because it is CLI based tool and not a GUI based. Also, community and OEM support are not available for this tool.

Incentivized

When critical networking gear, such as a main firewall needs to be quickly audited.

Incentivized

• Well known tool
• Source code available
• Wweb server vulnerability scanner

Incentivized

• Easy to use tool, with a low impact in network traffic.
• Support from the vendor (for any enquiries or problems).
• Quick in creating the reports that we need.
• Licensing costs are low in comparison to other solution/vendors.

Incentivized

• Can be made GUI based for ease of users
• User community should be there
• Development and support should be available

Incentivized

• We definitely need support for a wider range of smaller vendors of equipment
• Better summary of conflicting access control lists would help

Incentivized

Although Nipper from Titania helps in auditing accurately every device in the network and helps in prioritizing the fixies, it is really useful for the part of the firewall in a network and also for the quick making of reports which are also customizable. But from our experience, the Qualys solution for scanning the networks, although is more costly, it also has more features and options in regards to assessing a network and the elements connected to the network, though it is also somehow less powerful when it comes to creating quick reports. Qualys has a more interface and dashboard approach regarding the results of the scans.

Incentivized

• Improved security posture of organisation.
• Improved in regulatory and corporate compliance.
• Easy to use result in adaptation of this tool by business users.

Incentivized

• Positive Return on Investment