Google Skipfish is a web application security reconnaissance tool that is perfect for performing a quick free check for vulnerabilities against a target website or webapp. We have integrated the tool into an online webpage that allows you to use the Google skipfish scanner for a limited time of 90 seconds. Please note the results are limited and you should consider our professional services for a full website penetration test where you will receive a 20 page detailed report after a one/two week security audit. Skipfish will report on the initial problems it sees within this 90 second quick check, and you can then download the results as a PDF, which will serve as a free snippet of basic information to be expanded upon through our in-depth penetration testing services.
Key features of Skipfish:
- High speed: pure C code, highly optimized HTTP handling, minimal CPU footprint – easily achieving 2000 requests per second with responsive targets.
- Ease of use: heuristics to support a variety of quirky web frameworks and mixed-technology sites, with automatic learning capabilities, on-the-fly wordlist creation, and form autocompletion.
- Cutting-edge security logic: high quality, low false positive, differential security checks, capable of spotting a range of subtle flaws, including blind injection vectors.
You can access the tool from our free website security scanner page.
You may also like to access our penetration testing tools suite online, a free portal for you to use a selection of popular GPL tools.