Version 1.18b: -------------- - Fix a potential NULL ptr deref with malformed Set-Cookie. Version 1.17b: -------------- - JS detector refined not to trigger on certain text/plain inputs. Version 1.16b: -------------- - Fixed a typo introduced in 1.16 to index.html (d'oh). - Further refinements to Makefile CFLAGS / LIBS / LDFLAGS. Version 1.15b: -------------- - Better documentation of why certain issues are not reported by skipfish. - Another minor tweak to path mapping detection logic. Version 1.14b: -------------- - Several new wordlist entries, courtesy of Glastopf Honeypot: http://glastopf.org/index.php - A tweak to path mapping detection logic to detect certain path mappings. - Makefile now honors external LDFLAGS, CFLAGS. - Some more documentation tweaks. - PUT detection logic. Version 1.13b: -------------- - Improved password, file form detection. Version 1.12b: -------------- - Improved visibility of the KnownIssues page (reports, Makefile). - The location of assets/ directory is now configurable. Version 1.11b: -------------- - SIGWINCH support: you can now resize your window while scanning. - Typo in report category name fixed. - Terminal color fix for non-standard themes. - Fixed icons license (GPL -> LGPL). - Fixed a typo in -b ffox headers. - Fixed a potential NULL pointer crash in form parsing. Version 1.10b: -------------- - Fix to extensions-only.wl. Version 1.09b: -------------- - Fix for a potential NULL pointer crash in probabilistic scan mode (<100%). Version 1.08b: -------------- - A minor improvement to XHTML / XML detection. Version 1.07b: -------------- - Several build fixes for FreeBSD, MacOS X. Version 1.06b: -------------- - Minor documentation updates. Version 1.05b: -------------- - Another workaround for FORTIFY_SOURCE on MacOS X. Version 1.04b: -------------- - Workaround for *BSD systems with malloc J or Z options set by default. - A minor tweak to reject certain not-quite-URLs extracted from JS. Version 1.01b: -------------- - Workaround for a glitch in FORTIFY_SOURCE on Linux. Version 1.00b: -------------- - Initial public release.