Article Diary - General Knowledge Digest

Google Skipfish - Web Application Security Scanner

Google released Skipfish, a free fully automated, active web application security reconnaissance tool. It prepares an interactive sitemap for the targeted site by carrying out a recursive crawl and dictionary-based probes. The safety of the Internet is of paramount importance to Google, and helping web developers build secure, reliable web applications is an important part of the equation. Skipfish will be a valuable contribution to the information security community, making security assessments significantly more accessible and easier to execute.

The resulting map is then annotated with the output from a number of active (but hopefully non-disruptive) security checks. The final report generated by the tool is meant to serve as a foundation for professional web application security assessments.

Google Skipfish

Key Features:

  • High speed: Pure C code, highly optimized HTTP handling, minimal CPU footprint - easily achieving 2000 requests per second with responsive targets.
  • Ease of use: Heuristics to support a variety of quirky web frameworks and mixed-technology sites, with automatic learning capabilities, on-the-fly wordlist creation, and form auto completion.
  • Cutting-edge security logic: High quality, low false positive, differential security checks, capable of spotting a range of subtle flaws, including blind injection vectors.

A rough list of the security checks offered by the skipfish tool is outlined below.

  • Server-side SQL injection (including blind vectors, numerical parameters).
  • Explicit SQL-like syntax in GET or POST parameters.
  • Server-side shell command injection (including blind vectors).
  • Server-side XML / XPath injection (including blind vectors).
  • Format string vulnerabilities.
  • Integer overflow vulnerabilities.
  • Stored and reflected XSS vectors in document body (minimal JS XSS support present).
  • Stored and reflected XSS vectors via HTTP redirects.
  • Stored and reflected XSS vectors via HTTP header splitting.
  • Directory traversal (including constrained vectors).
  • HTTP credentials in URLs.
  • Self-signed SSL certificates.
  • Internal warnings like failed resource fetch attempts, exceeded crawl limits, Failed 404 behaviour checks etc.
  • and many more...

The tool supports Linux, FreeBSD 7.0+, MacOS X, and Windows (Cygwin) environments. To download the scanner, please visit this page; detailed project documentation is available here.

5 (1)
Article Rating (1 Votes)
Rate this article
Attached Files
There are no attachments for this article.
Comments
There are no comments for this article. Be the first to post a comment.
Name
Email
Security Code Security Code
Related Articles RSS Feed
tgrdfgdgfdg
Viewed 1159 times since Sun, Jan 17, 2010
ProFolio - Instantly Create Free Portfolio Website
Viewed 1728 times since Sun, Jan 3, 2010
5 Best Online Diagram Designing Tools
Viewed 14616 times since Sat, Jan 30, 2010
Admin Skins - Constellation Complete Admin Skin
Viewed 1483 times since Thu, Aug 12, 2010
ValidForm Builder - Creating Forms With Validation
Viewed 1154 times since Wed, Apr 21, 2010
Google Web Toolkit - Version 2 Released
Viewed 1225 times since Tue, Dec 15, 2009
Open Source WYSIWYG Editor
Viewed 1506 times since Thu, Jan 7, 2010
PHP Interview Questions with Answers - Part 1
Viewed 1434 times since Mon, Jan 11, 2010
Search Engine Optimization: Tags of Importance for SEO
Viewed 1165 times since Tue, Oct 12, 2010
Web Usability Testing Tool - Clixpy
Viewed 1678 times since Sat, Jan 9, 2010