Skipfish

Description

Skipfish is an active web application security reconnaissance tool. It prepares an interactive sitemap for the targeted site by carrying out a recursive crawl and dictionary-based probes. The resulting map is then annotated with the output from a number of active (but hopefully non-disruptive) security checks. The final report generated by the tool is meant to serve as a foundation for professional web application security assessments.

Usage

Syntax

skipfish [option]

Example

cyborg@cyborg:~$ sudo skipfish -o /home/cyborg/output -S /usr/share/skipfish/dictionaries/minimal.wl http://192.168.1.18


 Scan statistics     : 0:00:03.673s), 1214 kB in, 138 kB out (373.2 kB/s)  
 Scan statistics     : 0:00:03.727s), 1289 kB in, 146 kB out (390.8 kB/s)  
 Scan time           : 0:00:03.783s), 1379 kB in, 155 kB out (411.7 kB/s)  
 Scan time           : 0:00:03.839s), 1453 kB in, 162 kB out (427.3 kB/s)  
 HTTP requests       : 872 (259.4/s), 1540 kB in, 172 kB out (445.9 kB/s)  
 Compression         : 0 kB in, 0 kB out (0.0% gain)    etried, 0 drops val
 HTTP faults         : 0 net errors, 0 proto errors, 0 retried, 0 drops val
 TCP handshakes      : 20 total (91.2 req/conn)  purgeddict    0 par, 0 val
 TCP faults          : 0 failures, 0 timeouts, 1 purgeddict    0 par, 0 val
 External links      : 2 skipped   done (5.26%)    , 1 dict    0 par, 0 val
 Reqs pending        : 952         done (4.55%)    s, 1 dict     par, 0 val
 Database statistics : total, 1 done (4.55%)    , 1 dict    0 par, 0 val
 Database statistics : total, 1 done (4.55%)    s, 1 dict    0 par, 0 val
 Pivots              : 22 total, 2 done (9.09%)    s, 1 dict    0 par, 0 val
 Pivots              : 22 total, 2 done (9.09%)    s, 1 dict    0 par, 0 val
 In progress         : 3 pending, 6 init, 10 attacks, 1 dict    0 par, 0 val
 Missing nodes       : 11 spotted dir, 0 file, 0 pinfo, 3 unkn, 0 par, 0 val
 Node types          : 1 serv, 18 dir, 0 file, 0 pinfo, 3 unkn, 0 par, 0 val
 Issues found        : 16 info, 0 warn, 0 low, 0 medium, 0 high impacts
 Dict size           : 2176 words (5 new), 31 extensions, 69 candidates
 Signatures          : 77 total
0 Comments

Leave a reply

CONTACT US

We're are building as a community and a team. Be a part of it.

Sending

©2017 Ztrela Knowledge Solutions Pvt. Ltd

Log in with your credentials

Forgot your details?