Skipfish is a free, open-source, and Web application.ProgramSecurity detection tools. Skipfish features:
- -Fast: skipfish is fully written by C. It features highly optimized HTTP processing capabilities and the lowest CPU usage. It can easily process 2000 requests per second;
- -Easy to use: Uses heuristic scanning technology to host multiple web architectures. Supports automatic learning, Dictionary dynamic creation, and automatic form creation.
- -Cutting-edge security logicAlgorithm: High performance and low false positive rate.
Skipfish supports Linux, FreeBSD 7.0 +, MacOS X, and Windows (cygwin) environments. Tool details and official code.google.com
.
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ ~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Google Web Application Security scanning tool-skipfish (1.41 beta)
A fully automatic, Active Web Application Security reconnaissance tool. Key features:
- High Speed
: Pure C code, highly optimized HTTP
Handling, minimal CPU footprint-easily achieving 2000 requests per
Second with responsive targets.
- Usage of use
: Heuristics to support a variety
Quirky web frameworks and mixed-technology sites, with automatic
Learning capabilities, on-the-fly wordlist creation, and form
Autocompletion.
- Cutting-edge security logic
: High quality, low
False Positive, differential security checks, capable of spotting
Range of subtle flaws, including blind injection vectors.
The tool is believed to support Linux, FreeBSD 7.0 +, MacOS X, and Windows (cygwin) environments. Download current version
(1.41 beta)
Original article link