Its a web vulnerability scanner .If the website is running good security these scans can be blocked by good security firewalls and stuff like that.
nikto -h <ipaddress>
A Result scan would look something like this and give us information about potentially outdated versions of technologies used and also exploits on this open ports and a little bit of dir busitng
Cheat sheet that we can use →