skipfish is a high-performance, easy, and sophisticated Web application

security testing tool. It features a single-threaded multiplexing HTTP stack, heuristic detection of obscure Web frameworks, and advanced, differential security checks capable of detecting blind injection vulnerabilities, stored XSS, and so forth. PR: ports/144942 Submitted by: Ryan Steinmetz <rpsfa@rit.edu> Approved by: itetcu (mentor) WWW: http://code.google.com/p/skipfish/
author: Niels Heinen <niels@FreeBSD.org> 2010-03-25 06:43:37 +0000
committer: Niels Heinen <niels@FreeBSD.org> 2010-03-25 06:43:37 +0000
commit: 5832e3c6bf466590ba8fff3313d550d198c23c20 (patch)
tree: 6c349c8ec301f119c2c571d4d4d07d01e60f6a8f /security/skipfish/pkg-descr
parent: - Upgrade to 0.03. (diff)
1 files changed, 16 insertions, 0 deletions
diff --git a/security/skipfish/pkg-descr b/security/skipfish/pkg-descr
new file mode 100644
index 000000000000..819ebc7b3ded
--- /dev/null
+++ b/security/skipfish/pkg-descr
@@ -0,0 +1,16 @@
+A fully automated, active web application security reconnaissance
+tool. Key features:
+
+* High speed: pure C code, highly optimized HTTP handling, minimal
+  CPU footprint - easily achieving 2000 requests per second with 
+  responsive targets. 
+
+* Ease of use: heuristics to support a variety of quirky web 
+  frameworks and mixed-technology sites, with automatic learning 
+  capabilities, on-the-fly wordlist creation, and form autocompletion. 
+
+* Cutting-edge security logic: high quality, low false positive, 
+  differential security checks, capable of spotting a range of subtle 
+  flaws, including blind injection vectors. 
+
+WWW: http://code.google.com/p/skipfish
author	Niels Heinen <niels@FreeBSD.org>	2010-03-25 06:43:37 +0000
committer	Niels Heinen <niels@FreeBSD.org>	2010-03-25 06:43:37 +0000
commit	5832e3c6bf466590ba8fff3313d550d198c23c20 (patch)
tree	6c349c8ec301f119c2c571d4d4d07d01e60f6a8f /security/skipfish/pkg-descr
parent	- Upgrade to 0.03. (diff)