Entries Tagged with ‘Skipfish’

Ubuntu) – Why Google Skipfish failes to be a top-class web vulnerability scanner

September 18, 2010 en Security in general by valentin

Some of you might have read my little tutorial about how to use Google Skipfish for web vulnerability scanning. While I was fascinated by the efficiency and speed of this application, I started to use it more often. Although manual testing can’t be replaced by a machine, web vulnerability scanners are still a helping hand. During [...]

(Continue reading…)

Google Skipfish version 1.34b released

May 14, 2010 en LFI, Security in general, SQL Injection, XSS by valentin

Google, html code injection, local file inclusion, Penetration Testing, scanner, Security, Security Assessment, Skipfish, sql injection, tool, vulnerabilities, Vulnerability Research, XSS 0 Comments

On the 6th May 2010 a new version of Google Skipfish (penetration testing tool/vulnerability scanner) was released. View the changelog here. Download it here. According to the changelog not many things were changed.

(Continue reading…)

Penetration Testing with Google’s Skipfish (Debian/Ubuntu)

April 29, 2010 en Security in general, SQL Injection, XSS by valentin

Google, html code injection, Penetration Testing, scanner, Security, Security Assessment, Skipfish, sql injection, tool, vulnerabilities, Vulnerability Research, XSS 5 Comments

I recently had the time to test Google’s Skipfish. It is a fully automated penetration testing tool and was just published some weeks ago. This little tutorial will show Debian/Ubuntu users how to install it and perform the first test. I. Introduction Tools like Nessus and Nmap are indispensable when it comes down to security [...]

(Continue reading…)