Hikit Backdoor Detection

critical Nessus Plugin ID 78429


The remote host runs a potentially malicious remote administration tool.


The remote host is running a Hikit backdoor client. Hikit is a remote administration tool (RAT) used to control computers infected by malware. The 'client' component is used to control those computers and is associated with malicious activity.


Run local scans of the target host and all other potentially infected hosts using appropriate malware detection and removal tools.

Plugin Details

Severity: Critical

ID: 78429

File Name: hikit_detect.nasl

Version: 1.7

Type: remote

Family: Backdoors

Published: 10/14/2014

Updated: 4/11/2022

Configuration: Enable thorough checks

Asset Inventory: true

Supported Sensors: Nessus

Vulnerability Information

CPE: x-cpe:/a:hikit:hikit