skipfish - Project Hosting on Google Code
http://code.google.com/p/skipfish/

A fully automated, active web application security reconnaissance tool. Key features: * High speed: pure C code, highly optimized HTTP handling, minimal CPU footprint - easily achieving 2000 requests per second with responsive targets. * Ease of use: heuristics to support a variety of quirky web frameworks and mixed-technology sites, with automatic learning capabilities, on-the-fly wordlist creation, and form autocompletion. * Cutting-edge security logic: high quality, low false positive, differential security checks, capable of spotting a range of subtle flaws, including blind injection vectors.

@z0nbi What does the #security community think of this announcement: http://code.google.com/p/skipfish/ ~ A Google web app security scanner.

an active web application security reconnaissance tool. It prepares an interactive sitemap for the targeted site by carrying out a r

Software om webapplications te testen, ook op beveiliging

「・・・skipfish - web application security scanner・・・」

Security checks and link extraction for third-party, plugin-based content (Flash, Java, PDF, etc).