spangey / skipfish

Automatically exported from code.google.com/p/skipfish
Apache License 2.0
0 stars 0 forks source link

Documentation detailing how vulnerabilities are determined #204

Open GoogleCodeExporter opened 9 years ago

GoogleCodeExporter commented 9 years ago
Is it possible to add to documentation how Skipfish determines whether a 
vulnerability exists.

While I love skipfish, it does seem to produce quite a few false positives. 
Knowing the reasoning behind the report would make it easier.

Original issue reported on code.google.com by zenca...@googlemail.com on 8 Mar 2014 at 9:08