Review: skipfish - Web App Security Recon Tool (“Fuzzer”)

Name: skipfish
Brand: skipfish

LIVE VIRTUAL TRAINING for CYBER ARCHITECTURE
• Taught by LIVE CYBER EXPERTS | • Secure VIRTUAL CLASSROOMS
• Choose Tool: CAMEO, MAGICDRAW, SPARX EA...

TOP
PICK

EDITOR RATINGS ⁃ Functionality (40%) ⁃ Performance (20%) ⁃ Usability (20%) ⁃ Portability (10%) ⁃ Value (10%) ⁃ OVERALL

⁃
⁃
⁃
⁃
⁃
⁃

USER RATINGS

0 ratings

MBSE + SysML Public Training...
• Choose CAMEO or SPARX EA integrated tool training
• Secure Virtual (Online) Classrooms
• Taught by MBSE + SysML Experts w/ 10+ yrs experience

PLATFORMS

Review: skipfish - Web App Security Reconnaissance Tool ("Fuzzer")

Review of skipfish, a Free & Open Source Software (FOSS) web application security reconnaissance tool.

REVIEW SUMMARY

Skipfish is an active web application security reconnaissance tool. Skipfish generates an interactive sitemap for a targeted site by carrying out a recursive crawl and dictionary-based probes. The resulting sitemap is annotated with the output from several active (and ideally non-disruptive) security checks. The final report generated by skipfish is meant to serve as a foundation for professional web application security assessments.

Skipfish is fast, easy-to-use, and based on leading-edge security logic (high-quality, low false-positive, differential security checks, capable of spotting a range of subtle flaws, including blind injection vectors). As a result, it is highly recommended for both cybersecurity noobs and certified ethical hackers.

Reviewer: Editor, CybersecurityForum
Cybersecurity Software Reviewed: skipfish - Web App Security Reconnaissance Tool ("Fuzzer")
Date Published: 12/15/2019
Editor Rating: 4 / 5 Stars

DOWNLOAD LINKS

Download skipfish...

CYBERSECURITY FORUM and CyberSecurityForum.com are trademarks of PivotPoint Technology Corporation. All other product and service names mentioned are the trademarks of their respective companies.