Google unveils Skipfish security tool

Powered by SC Magazine
 

Free software scans web apps for flaws.

Google has released a new development tool aimed at uncovering security holes in web applications.

The company said that the new tool, dubbed Skipfish, will allow developers to scan web applications for possible security vulnerabilities.

Currently in beta mode, the tool is designed to support multiple application frameworks and will run on Windows, Linux, MacOSX and BSD operating systems.

Google said that speed and compatibility were the main priorities when designing the tool. Skipfish was written in C and engineered to run quickly while putting minimal strain on processors.

"The safety of the Internet is of paramount importance to Google, and helping web developers build secure, reliable web applications is an important part of the equation," wrote Google developer Michal Zalewsk in a blog posting.

"We feel that Skipfish will be a valuable contribution to the information security community, making security assessments significantly more accessible and easier to execute."

Protecting web applications and cloud computing services has arguably become the biggest issue in the security world as of late. Analysts and developers alike have noted a distinct lack of trust from users in many web applications, particularly enterprise IT services.

As a result, security vendors have stepped up efforts to offer tools and services to web application and cloud computing developers.

Copyright ©v3.co.uk


Google unveils Skipfish security tool
 
 
 
Top Stories
Westpac interim CIO resigns
Group CIO yet to be appointed.
 
Earning the right to innovate
Breaking down the barriers to innovation is a long, but rewarding process, says Bank of Queensland Group CIO, Julie Bale.
 
A call for timely reporting
[Blog post] Businesses need incentives to keep customer data secure.
 
 
Sign up to receive iTnews email bulletins
   FOLLOW US...
Latest Comments
Polls
What is delaying adoption of public cloud in your organisation?







   |   View results
Lock-in concerns
  26%
 
Application integration concerns
  3%
 
Security and compliance concerns
  28%
 
Unreliable network infrastructure
  9%
 
Data sovereignty concerns
  22%
 
Lack of stakeholder support
  3%
 
Protecting on-premise IT jobs
  5%
 
Difficulty transitioning CapEx budget into OpEx
  3%
TOTAL VOTES: 902

Vote