Results 1 to 4 of 4

Thread: SkipFish 1.33b installation - BT4

  1. #1
    Just burned his ISO bostonlink's Avatar
    Join Date
    Jan 2010
    Location
    Boston MA
    Posts
    17

    Default SkipFish 1.33b installation - BT4

    This is a tutorial on how to install Skipfish 1.33b in BT4 final.

    Note: all commands that should be issued are in code boxes all other text is comments

    The first thing we need to do is install a dependency that does not come default with BT4. The dependency is libidn11-dev, BT4 comes with libidn11 by default just not the development lib.

    Install libidn11-dev
    Code:
    apt-get install libidn11-dev
    Installation
    Download skipfish from the url below:
    skipfish - Project Hosting on Google Code

    once downloaded we extract and move to any dir you would like, I moved it to /pentest/web/skipfish so I will be organized.
    Code:
    mv skipfish-1.33b.tgz /tmp
    cd /tmp
    tar xvf skipfish-1.33b.tgz
    mv skipfish /pentest/web/
    cd /pentest/web/skipfish
    Before we issue our make command we need to modify the Makefile, look for the LDFLAGS we need to add our correct directory. Before modification it looks like this:
    Before:
    Code:
    LDFLAGS   += -L/usr/local/lib/ -L/opt/local/lib
    After:
    Code:
    LDFLAGS   += -L/usr/lib/ -L/opt/local/lib
    After you make the appropriate changes save the Makefile, you can now run make and compile skipfish.

    Note: if you do not modify the Makefile as described above skipfish will compile but when you run the application it will error out and not scan since the Makefile was pointing to the wrong directory.

    Make the executable:
    Code:
    make
    and we are done, all you need to do now is choose the appropriate dictionary you want to use. for more information See dictionaries/README-FIRST to pick a dictionary for the tool.

    I chose the minimal.wl dictionary now we cp and move it
    Code:
    cp minimal.wl skipfish.wl
    cp skipfish.wl ..
    cd ..
    you can optionally make a output directory as well I like to, for the sake of organization:

    Code:
    mkdir output/
    mkdir output/first
    RUN IT:
    Code:
    ./skipfish -o output/frist/ http://192.168.6.9
    when the scan completes the output report will be output/first/index.html

    Hope you enjoy it.
    bostonlink - OSCP

  2. #2
    Junior Member skidmarq's Avatar
    Join Date
    Jan 2010
    Posts
    88

    Default Re: SkipFish 1.33b installation - BT4

    Good stuff, I just get leery with how often updates are being posted to this app. Will probably wait for a stable release before permanent install....
    I got 99 problems but the bits ain't one...

  3. #3
    Just burned his ISO bostonlink's Avatar
    Join Date
    Jan 2010
    Location
    Boston MA
    Posts
    17

    Default Re: SkipFish 1.33b installation - BT4

    I agree, I am just testing it out on my dev box to see how it compares to other web scanners out there and I figured why not throw my documentation in a how-to post.

    Thanks for the reply.
    Last edited by bostonlink; 05-01-2010 at 01:09 AM.
    bostonlink - OSCP

  4. #4
    Junior Member skidmarq's Avatar
    Join Date
    Jan 2010
    Posts
    88

    Default Re: SkipFish 1.33b installation - BT4

    Oh, I hear ya, it's a great tool and we definitely appreciate the contribution!

    Thanks
    I got 99 problems but the bits ain't one...

Similar Threads

  1. Replies: 0
    Last Post: 04-20-2010, 04:42 PM
  2. skipfish -> problem on a backtracku 4 :/
    By wasad in forum Beginners Forum
    Replies: 6
    Last Post: 04-08-2010, 07:42 PM
  3. Skipfish - Web App Security Scanner
    By skidmarq in forum Tool Requests
    Replies: 5
    Last Post: 03-23-2010, 02:54 AM
  4. USB Installation
    By appreciated in forum OLD BackTrack 4 Bugs and Fixes
    Replies: 4
    Last Post: 08-03-2009, 10:43 PM
  5. Installation
    By sup3r501d13r in forum OLD Newbie Area
    Replies: 2
    Last Post: 07-28-2008, 08:59 AM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •