skipfish
A fully automated, active web application security reconnaissance tool. Key features: High speed: pure C code, highly optimized HTTP handling, minimal CPU footprint - ea...
What is skipfish?
A fully automated, active web application security reconnaissance tool. Key features: High speed: pure C code, highly optimized HTTP handling, minimal CPU footprint - easily achieving 2000 requests per second with responsive targets. Ease of use: heuristics to support a variety of quirky web frameworks and mixed-technology sites, with automatic learning capabilities, on-the-fly wordlist creation, and form autocompletion.
Cutting-edge security logic: high quality, low false positive, differential security checks, capable of spotting a range of subtle flaws, including blind injection vectors.
The tool is believed to support Linux, FreeBSD, MacOS X, and Windows (Cygwin) environments.
Skipfish is no longer maintained. Last version, 2.10 beta, released in December 2012, can be still downloaded from Google Code Archive
skipfish Screenshots
skipfish Features
skipfish information
Supported Languages
- English
Comments and Reviews
Tags
- Vulnerability Scanner
- reconnaissance
Category
OS & UtilitiesRecent user activities on skipfish
fofabot added skipfish as alternative(s) to FOFA
ledgermedia added skipfish as alternative(s) to PaladinVPN
justarandom added skipfish as alternative(s) to Privacy Friendly Net Monitor