skipfish

skipfish is an active web application security reconnaissance tool. It prepares an interactive sitemap for the targeted site by carrying out a recursive crawl and dictionary-based probes. The resulting map is then annotated with the output from a number of active (but hopefully non-disruptive) security checks. The final report generated by the tool is meant to serve as a foundation for professional web application security assessments. For downloads and more information, visit the skipfish homepage.

Popularity
#39, new!
Latest release
  • 2.10b
  • Dec. 4, 2012 (9 years, 5 months ago)
Links
Rating
★★★★½ (2)
★★★★★
50% ★★★★
50% ★★★
0% ★★
0%
0%
Outdated/incomplete?

Screenshot

Comments

★★★★ xem

Great tool. Fast and powerful. Rapport can be better.

★★★★★ Michal Ambroz

Excellent tool for automated initial quick assessment of the website. Written in C it is incredibly fast and can generate/analyze thousands of requests per second.

Comments disabled

Feed for updates.

Home