You are here: Home » Media Room > News Archive
22/03/2010 09:51:00
A tool to help internet developers make their applications more secure has been launched by online search giant Google. The firm said skipfish will be open-source and has been released under the Apache licence. The tool recursively trawls webpages and uses dictionary attacks to prepare an interactive map of the site. This is then used to test the site for all manner of hacker attacks and vulnerabilities, such as blind injection vectors. Skipfish is written in C and will be measured against the current Nikto and Nessus scanners. Google claims that skipfish has specific advantages, such as a speedy operation which can process 2,000 local area network requests every second and 7,000 local instance requests. This is enabled by a special HTTP stack and smart response caching. The documentation for skipfish reads: "Please do not be evil. Keep in mind that all types of security testing can be disruptive. Although the scanner is designed not to carry out malicious attacks, it may accidentally interfere with the operations of the site." Heuristics are used on web frameworks and on sites which use different technology combined. Copyright © Press Association 2010
In The News
Read what some of our satisfied customers are saying about us.