Skipfish

Skipfish is an active web application security reconnaissance tool, which prepares an interactive sitemap for the targeted site by carrying out a recursive crawl and dictionary-based probes.

Product Description:

Skipfish features a form auto-completion mechanism in order to maximize scan coverage. The values should be non-malicious, as they are not meant to implement security checks - but rather, to get past input validation logic.  Skipfish is a free and open-source Automated Penetration Testing (APT) tool for security researchers that can be found on GitHub. Skipfish is used for information gathering and testing the security of websites and web servers. Skipfish is one of the most user-friendly and effective penetration testing tools available. It comes with several integrated tools for penetrating testing the target system. This tool is also called an active web application security reconnaissance tool.

Specialties:

Penetration Testing, Network Security, Web Security, Vulnerability Management, and Application Security.