Day 18 网页分析 - Web Application Analysis (Skipfish )

工具介绍

Skipfish是一个google开发的网页安全扫描工具，主要特色如下

纯C打造的高效工具、低CPU使用率，轻松实现每秒2000个请求
支援各种网页框架、混合型网页，具有自动学习功能、动态词表创建和表单自动完成功能。
高品质、低误报

使用方式的确很容易，用-o指定最後报表存放的资料夹名称，最後带目标网页，这边用靶机来测试

Skipfish -o folder http://192.168.1.86

执行後会先显示一些提示，可以直接Enter继续执行

Welcome to skipfish. Here are some useful tips:

1) To abort the scan at any time, press Ctrl-C. A partial report will be written
   to the specified location. To view a list of currently scanned URLs, you can
   press space at any time during the scan.

2) Watch the number requests per second shown on the main screen. If this figure
   drops below 100-200, the scan will likely take a very long time.

3) The scanner does not auto-limit the scope of the scan; on complex sites, you
   may need to specify locations to exclude, or limit brute-force steps.

4) There are several new releases of the scanner every month. If you run into
   trouble, check for a newer version first, let the author know next.

More info: http://code.google.com/p/skipfish/wiki/KnownIssues

扫描需要很长的时间，像下面这张图就已经是跑了49分钟还没结束的状况，从纪录看来已经扫描出

如果要中断扫描，可以按Ctrl + C，工具会结束并标明是由使用者中断，且扫描的所有纪录都会被放在执行时所指定的资料夹

[!] Scan aborted by user, bailing out!                                       
[+] Copying static resources...                                              
[+] Sorting and annotating crawl nodes: 1141                                 
[+] Looking for duplicate entries: 1141                                      
[+] Counting unique nodes: 1077                                              
[+] Saving pivot data for third-party tools...                               
[+] Writing scan description...                                              
[+] Writing crawl tree: 1141                                                 
[+] Generating summary views...                                              
[+] Report saved to 'folder/index.html' [0x9d5cc49b].                             
[+] This was a great day for science!

储存的结果可以直接透过浏览器来打开