{"id":7545,"date":"2012-02-26T11:12:22","date_gmt":"2012-02-26T03:12:22","guid":{"rendered":"https:\/\/aqzt.com\/7545.html"},"modified":"2012-02-26T11:12:22","modified_gmt":"2012-02-26T03:12:22","slug":"skipfish-2-04b-%e5%8f%91%e5%b8%83%ef%bc%8cweb%e5%ba%94%e7%94%a8%e5%ae%89%e5%85%a8%e6%a3%80%e6%b5%8b","status":"publish","type":"post","link":"https:\/\/aqzt.com\/7545.html","title":{"rendered":"Skipfish 2.04b \u53d1\u5e03\uff0cWeb\u5e94\u7528\u5b89\u5168\u68c0\u6d4b"},"content":{"rendered":"<p><a href=\"https:\/\/www.oschina.net\/\" target=\"_blank\" rel=\"noopener noreferrer\">\u6587\u7ae0\u8f6c\u8f7d\u5f00\u6e90\u4e2d\u56fd<\/a><\/p>\n<p>skipfish\u662fGoogle\u63a8\u51fa\u7684\u4e00\u6b3e\u514d\u8d39\u3001\u5f00\u6e90\u3001Web\u5e94\u7528\u7a0b\u5e8f\u5b89\u5168\u68c0\u6d4b\u5de5\u5177\u3002skipfish\u4e3b\u8981\u7279\u70b9:\u626b\u63cf\u901f\u5ea6\u5feb\u3001\u6613\u4e8e\u4f7f\u7528\u3001\u5c16\u7aef\u7684\u5b89\u5168\u903b\u8f91\u3002<\/p>\n<p>\u76ee\u524dskipfish\u66f4\u65b0\u81f32.04b\u7248\uff0c\u65b0\u7248\u672c\u4e3b\u8981\u6539\u53d8\u5982\u4e0b:<\/p>\n<p>&nbsp;Option -V eliminated in favor of -W \/ -S.<br \/> &nbsp;Option -ladded to limit the maximum requests per second (contributed by Sebastian Roschke)<br \/> &nbsp;Option -kadded to limit the maximum duration of a scan (contributed by Sebastian Roschke)<br \/> &nbsp;Support for #ro, -W-; related documentation changes.<br \/> &nbsp;HTTPS -&gt; HTTP form detection.<br \/> &nbsp;Added more diverse traversal and file disclosure tests (including file:\/\/ scheme tests)<br \/> &nbsp;Improved injection detection in &lt; script &gt; sections, where a &lsquo; or &rdquo; is all we need to inject js code.<br \/> &nbsp;Added check to see if our injection strings end up server Set-Cookie, Set-Cookie2 and Content-Type reponse headers<br \/> &nbsp;URLs that give us a Javascript response are now tested with a &ldquo;callback=&rdquo; parameter to find JSONP issues.<br \/> &nbsp;Fixed &ldquo;response varies&rdquo; bug in 404 detection where a stable page would be marked unstable.<br \/> &nbsp;Bugfix to es \/ eg handling in dictionaries.<br \/> &nbsp;Added the &ldquo;complete-fast.wl&rdquo; wordlist which is an es \/ eg optimized  version of &ldquo;complete.wl&rdquo; (resulting in 20-30% fewer requests).<\/p>\n<p>\u51fa\u81ea\uff1a<a href=\"http:\/\/www.pulog.org\/\">BugZone<\/a><a href=\"http:\/\/www.pulog.org\/tools\/2409\/Skipfish-2.04b\/\"> &#8211; http:\/\/www.pulog.org\/tools\/2409\/Skipfish-2.04b\/<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>\u6587\u7ae0\u8f6c\u8f7d\u5f00\u6e90\u4e2d\u56fd skipfish\u662fGoogle\u63a8\u51fa\u7684\u4e00\u6b3e\u514d\u8d39\u3001\u5f00\u6e90\u3001Web\u5e94\u7528\u7a0b\u5e8f\u5b89\u5168\u68c0\u6d4b\u5de5\u5177\u3002skipfish\u4e3b\u8981\u7279\u70b9:\u626b\u63cf\u901f\u5ea6\u5feb\u3001\u6613\u4e8e\u4f7f\u7528\u3001\u5c16\u7aef\u7684\u5b89\u5168\u903b\u8f91\u3002 \u76ee\u524dskipfish\u66f4\u65b0\u81f32.04b\u7248\uff0c\u65b0\u7248\u672c\u4e3b\u8981\u6539\u53d8\u5982\u4e0b: &nbsp;Option -V eliminated in favor of -W \/ -S. &nbsp;Option -ladded to limit the maximum requests per second (contributed by Sebastian Roschke) &#038;n<\/p>\n","protected":false},"author":1,"featured_media":6522,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_bbp_topic_count":0,"_bbp_reply_count":0,"_bbp_total_topic_count":0,"_bbp_total_reply_count":0,"_bbp_voice_count":0,"_bbp_anonymous_reply_count":0,"_bbp_topic_count_hidden":0,"_bbp_reply_count_hidden":0,"_bbp_forum_subforum_count":0,"footnotes":""},"categories":[2],"tags":[292,170,9,171,25],"collection":[],"_links":{"self":[{"href":"https:\/\/aqzt.com\/wp-json\/wp\/v2\/posts\/7545"}],"collection":[{"href":"https:\/\/aqzt.com\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/aqzt.com\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/aqzt.com\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/aqzt.com\/wp-json\/wp\/v2\/comments?post=7545"}],"version-history":[{"count":0,"href":"https:\/\/aqzt.com\/wp-json\/wp\/v2\/posts\/7545\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/aqzt.com\/wp-json\/wp\/v2\/media\/6522"}],"wp:attachment":[{"href":"https:\/\/aqzt.com\/wp-json\/wp\/v2\/media?parent=7545"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/aqzt.com\/wp-json\/wp\/v2\/categories?post=7545"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/aqzt.com\/wp-json\/wp\/v2\/tags?post=7545"},{"taxonomy":"collection","embeddable":true,"href":"https:\/\/aqzt.com\/wp-json\/wp\/v2\/collection?post=7545"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}