Skipfish – web vulnerability scanner from Michal Practice (known under the nickname lcamtuf). Written in C, cross platform (for Win needs Cygwin). Recursively scans the entire site and finds all sorts of gaps in security. Also generates a lot of traffic (according to a few GB incoming/outgoing). But the tool is good, especially if there’s time and resources.
This scanner is a bit another scanning tool much in the same vein as for example Nikto or W3af. It is similar in that it is a free and opensource scanner, but it claims to be faster and less resource intensive than some of the others. It can be used to easily find Remote File Inclusion vulnerabilities (RFI).
In the reports folder as output will be report in html format.
thnx for review)
I have noticed that Kali even after updates eats lots of CPU and RAM, so thinking about moving to some another distro for pentesters