Installing Google Skipfish on Ubuntu/Debian
by David Bailey on Mar.19, 2010, under Redspin Labs
check out jason’s post for an in-depth review. http://bit.ly/9LAnbt
here’s the simple commands necessary to get hacking with Google’s new web application scanner Skipfish:
wget http://skipfish.googlecode.com/files/skipfish-1.01b.tgz
tar zxvf skipfish-1.01b.tgz
sudo apt-get install libidn11-dev
cd skipfish
make
cp dictionaries/default.wl skipfish.wl
./skipfish -o output_folder http://www.example.com
you’ll want to less README to understand all the options.
more to come shortly with our opinions, tips and lab results. currently we’re getting 600+ requests/second for internet sites, 4000+ requests/second for local tests.
enjoy,
4 Comments for this entry
2 Trackbacks / Pingbacks for this entry
-
Skipfish, Google Enters the Web Scanner Fray | Redspin Security Blog
March 19th, 2010 on 2:53 pm[...] wrote a cursory install for a testbed machine here. Notice Skipfish has very low overhead in the dependencies area, which is [...]
-
Skipfish 1.05b auf Ubuntu - Sebastian Constapel
March 20th, 2010 on 4:34 pm[...] Morgen, wie auf dem Blog von RedSpin schon berichtet, lässt sich das vor kurzem veröffentlichte Skipfish von Google auch bequem auf [...]
March 21st, 2010 on 10:27 pm
Had to also ‘apt-get install libssl-dev’ on my fresh karmic install to get the ‘make’ to work.
March 23rd, 2010 on 5:32 am
yes, libssl-dev also here on debian lenny…
April 1st, 2010 on 11:21 am
The FAQ says you need the zlib dev headers as well:
sudo apt-get install libssl-dev zlib1g-dev libidn11
http://digitivity.org/943/how-to-install-google-skipfish-on-ubuntu-linux
August 4th, 2010 on 7:13 am
look an interesting new feature given by the search engine giant ..will surely try it and provide my comments after words