Google unveils Skipfish security tool

Powered by SC Magazine
 

Free software scans web apps for flaws.

Google has released a new development tool aimed at uncovering security holes in web applications.

The company said that the new tool, dubbed Skipfish, will allow developers to scan web applications for possible security vulnerabilities.

Currently in beta mode, the tool is designed to support multiple application frameworks and will run on Windows, Linux, MacOSX and BSD operating systems.

Google said that speed and compatibility were the main priorities when designing the tool. Skipfish was written in C and engineered to run quickly while putting minimal strain on processors.

"The safety of the Internet is of paramount importance to Google, and helping web developers build secure, reliable web applications is an important part of the equation," wrote Google developer Michal Zalewsk in a blog posting.

"We feel that Skipfish will be a valuable contribution to the information security community, making security assessments significantly more accessible and easier to execute."

Protecting web applications and cloud computing services has arguably become the biggest issue in the security world as of late. Analysts and developers alike have noted a distinct lack of trust from users in many web applications, particularly enterprise IT services.

As a result, security vendors have stepped up efforts to offer tools and services to web application and cloud computing developers.

Copyright ©v3.co.uk


Google unveils Skipfish security tool
 
 
 
Top Stories
How hard do you hack back?
[Blog post] Taking the offensive could have unintended consequences.
 
Five zero-cost ways to improve MySQL performance
How to easily boost MySQL throughput by up to 5x.
 
The big winners from Defence’s back-office IT refresh
Updated: The full list of subcontractors.
 
 
Sign up to receive iTnews email bulletins
   FOLLOW US...
Latest Comments
Polls
Which is the most prevalent cyber attack method your organisation faces?




   |   View results
Phishing and social engineering
  69%
 
Advanced persistent threats
  3%
 
Unpatched or unsupported software vulnerabilities
  11%
 
Denial of service attacks
  6%
 
Insider threats
  12%
TOTAL VOTES: 1023

Vote