search

Safe3 / skipfish

Automatically exported from code.google.com/p/skipfish
Apache License 2.0
0 stars 1 forks source link

skipfish fails with "out of memory" against DVWA #46

Closed GoogleCodeExporter closed 8 years ago

GoogleCodeExporter commented 8 years ago 
I am trying skipfish against DVWA (http://www.dvwa.co.uk/) on a Ubuntu 9.04
VM with 2 GB RAM. Unfortunately it consistently fails with the following:

skipfish version 1.25b by <lcamtuf@google.com>

Scan statistics
---------------

       Scan time : 3:10:39.0369
   HTTP requests : 1155023 sent (101.04/s), 837781.75 kB in, 565251.44 kB
out (122.65 kB/s)  
     Compression : 177901.86 kB in, 766857.50 kB out (62.34% gain)    
 HTTP exceptions : 1 net errors, 0 proto errors, 0 retried, 0 drops
 TCP connections : 11447 total (101.48 req/conn)  
  TCP exceptions : 0 failures, 1 timeouts, 7 purged
  External links : 38219 skipped
    Reqs pending : 6609        

Database statistics
-------------------

          Pivots : 44832 total, 29585 done (65.99%)    
     In progress : 15015 pending, 169 init, 37 attacks, 26 dict     
   Missing nodes : 275 spotted
      Node types : 1 serv, 3228 dir, 12413 file, 1792 pinfo, 12773 unkn,
14625 par, 0 val
    Issues found : 4546 info, 8977 warn, 14540 low, 1 medium, 2320 high impact
       Dict size : 223 words (23 new), 8 extensions, 231 candidates

[-] PROGRAM ABORT : out of memory: can't allocate 14226 bytes
    Stop location : __DFL_ck_alloc(), alloc-inl.h:69

Any idea?

Original issue reported on code.google.com by kai.jend...@gmail.com on 30 Mar 2010 at 7:07

GoogleCodeExporter commented 8 years ago 
The problem seem to be the crawl simply going wrong: it's unlikely that the 
application consists of 45,000 files. Please allow the scan to run for 5-10 
minutes, 
then abort it with Ctrl-C, and examine the output or send me the results.

Original comment by lcam...@gmail.com on 30 Mar 2010 at 7:19

GoogleCodeExporter commented 8 years ago 
ping?

Original comment by lcam...@gmail.com on 1 Apr 2010 at 8:41

GoogleCodeExporter commented 8 years ago 
ping2?

Original comment by lcam...@gmail.com on 8 Apr 2010 at 10:39

GoogleCodeExporter commented 8 years ago 
Unless you provide some additional information, I can't really address this 
issue. 
Please reopen or ping me by e-mail when you can.

Original comment by lcam...@gmail.com on 19 Apr 2010 at 8:27