Skipfish is an active web application security reconnaissance tool, preparing an interactive sitemap for targeted sites through recursive crawl and dictionary-based probes, aiding quick analysis of potential security flaws.
Skipfish is an open source, active web application security reconnaissance tool. It was created by Michal Zalewski for Google as an automated security testing tool.
Here are some key features of Skipfish:
In summary, Skipfish is very useful for developers, system admins and security professionals to quickly analyze web applications for potential security flaws in the functionality or configuration. However, the tool should be used carefully on production websites to avoid affecting functionality or availability.
Here are some alternatives to Skipfish:
Suggest an alternative ❐