Skipfish by Google is an internally developed tool used as an active web application security reconnaissance tool. It prepares an interactive sitemap for the targeted site by carrying out a recursive crawl and dictionary-based probes. The resulting map is then annotated with the output from a number of active (but hopefully non-disruptive) security checks. The final report generated by the tool is meant to serve as a foundation for professional web application security assessments. The tool is meant to provide accurate and meaningful results.
Monday, March 22, 2010
Subscribe to:
Posts (Atom)