Nmap (https://nmap.org/), without doubt, is the most powerful port scanner and service enumerator that exists and has vulnerability scanning capabilities. Nmap has two main features. Firstly, it allows you to detect ports and services where potential vulnerabilities reside. Secondly, Nmap has an extensive language called the Nmap Scripting Engine (NSE), which allows the use of program scripts to automate tasks.

Using NSE, a lot of developers around the world have developed scripts to detect vulnerabilities, in a basic way similar to Nikto, but more interactively and with a big community supporting NSE scripts.

In the following screenshot, we can see a port scanning result; pay attention to the information from the services: