welcome!
Today we are going to see about a tool in skipfish.
skipfish is a tool in kali linux to gather information.
Skipfish is a web application security Reconnaissance tool. Skipfish prepares an interactive sitemap for the target using recursive crawl and dictionary-based probes.
The resulting map provides output after being scanned by security checks
Skipfish can be found under Web Applications | Web Vulnerability Scanners as
skipfish
When you first open Skipfish, a Terminal window will pop up showcasing the Skipfish commands. Skipfish can use built-in or customizable dictionaries for vulnerability assessment.
There are various command options available in Skipfish. To run Skipfish against a target website using a custom wordlist, enter skipfish, select your wordlist using the -W option followed by the location of the wordlist, select your output directory using -o followed by the location, and finally the target website.
==============================================================
Skipfish –o (output location) –W (location of wordlist) (target website)
==============================================================
I run a sample over www.google.com
==============================================================
Skipfish –o /root/desktop/skipfishoutput http://www.google.com
==============================================================
If there are no compiling errors, you will be presented with a launch screen that states the will start in 60 seconds or on pressing any key.
You can press the Spacebar to see the details on the scan or watch the default numbers
run. Scanning a target can take anywhere from 30 seconds to a few hours to complete the process. You can end a scan early by typing Ctrl + C.
Once the scan is complete or if you end it early, Skipfish will generate a ton of output files in the location specified when using the –o option to designate an output folder. To see the results, click on the index.html file, which will bring up an Internet browser. You can click through the drop-down boxes to see your results. See the example reports section for more information
Today we are going to see about a tool in skipfish.
skipfish is a tool in kali linux to gather information.
Skipfish is a web application security Reconnaissance tool. Skipfish prepares an interactive sitemap for the target using recursive crawl and dictionary-based probes.
The resulting map provides output after being scanned by security checks
Skipfish can be found under Web Applications | Web Vulnerability Scanners as
skipfish
When you first open Skipfish, a Terminal window will pop up showcasing the Skipfish commands. Skipfish can use built-in or customizable dictionaries for vulnerability assessment.
There are various command options available in Skipfish. To run Skipfish against a target website using a custom wordlist, enter skipfish, select your wordlist using the -W option followed by the location of the wordlist, select your output directory using -o followed by the location, and finally the target website.
==============================================================
Skipfish –o (output location) –W (location of wordlist) (target website)
==============================================================
I run a sample over www.google.com
==============================================================
Skipfish –o /root/desktop/skipfishoutput http://www.google.com
==============================================================
If there are no compiling errors, you will be presented with a launch screen that states the will start in 60 seconds or on pressing any key.
You can press the Spacebar to see the details on the scan or watch the default numbers
run. Scanning a target can take anywhere from 30 seconds to a few hours to complete the process. You can end a scan early by typing Ctrl + C.
Once the scan is complete or if you end it early, Skipfish will generate a ton of output files in the location specified when using the –o option to designate an output folder. To see the results, click on the index.html file, which will bring up an Internet browser. You can click through the drop-down boxes to see your results. See the example reports section for more information
Nice post.Thank for sharing,Also see my financial oriented blog,cash against credit card
ReplyDeleteHere are some wonderful light quilts made of block-printed silk and stuffed with wool. The quilts come in many different colors and designs but I fell in love with the blues, made using natural indigo.
ReplyDeleteBlock Printing Classes|Block Printing in Bangalore| Block Printing Classes in Bangalore