skipfish - web security testing

SKIPFISH is an automated, active web application security assessment tool.

SKIPFISH can be used to run  a series of tests on a website or web application to help identify potential secuirty risks.

SKIPFISH will classify risks discovered as high, medium and low.

Example risks are

  • Server-side SQL injection 
  • Explicit SQL-like syntax in GET or POST parameters.
  • Server-side shell command injection
  • Server-side XML / XPath injection 
  • Format string vulnerabilities.
  • Integer overflow vulnerabilities.

For more information visit http://code.google.com/p/skipfish/

Comments

  1. Great tool, I heard about it before. I create software that makes life easier, but often I do not have enough strength and energy to test my code, then I turn to him http://www.deviqa.com. I have been collaborating with them, the good guys, quality testing software, is very pleased with their work. They told me about this tool, it is a high quality, as safety is paramount.

    ReplyDelete
  2. I am glad that I saw this post. It is informative blog for us and we need this type of blog thanks for share this blog, Keep posting such instructional blogs and I am looking forward for your future posts.
    Cyber Security Projects for Final Year

    JavaScript Training in Chennai

    Project Centers in Chennai

    JavaScript Training in Chennai

    ReplyDelete

Post a Comment

Popular posts from this blog

ActiveMQ, easy to use open source message oriented middleware (MOM)

Basic Send Message to MQ with Java and IBM MQ JMS

MySQL Error Invalid Table or Database Name