Nikto (https://cirt.net/Nikto2) is also like a vulnerability scanner, but it is very limited. Nikto uses signatures to detect vulnerabilities, which means that Nikto can only detect well-known vulnerabilities. But it does not mean that is not useful; there are a lot of companies in the world using vulnerable open-source and private applications. In the following screenshot, we can see how Nikto shows the results of a scan of a host:
Another interesting capability is the use of lists to detect subdomains and directories in the website structure; you can use it to detect backup files, sensitive information, old features, and more.