Release Notes: A DCE-RPC over named pipe fuzzer was added. plonk, a remote DoS/local root against Windows 2000 is now included. BSD support was improved. Many other fixes were made.
Release Notes: New restricted pages and hosts, more fixes to the core engine to work on a few hosts that were buggy, and IE long URL support.
Release Notes: False 404 Detection support was added. NTLM authentication was fixed. Bugs in the Whisker to VulnXML converter that were double encoding cross site scripting attacks were fixed.
Release Notes: NTLM support (you can now can an IIS box running with Integrated Windows Authentication transparently), ordering of GET arguments the same way they were sent to the proxy, and other minor bugfixes in the core engine.
Release Notes: This release adds Win32 support and VulnXML support. Whisker functionality has been incorporated into SPIKE Proxy. Many other major bugs has been fixed.
Release Notes: Size fuzzers were added. Memory leaks were fixed. Proxy 1.3.2 was added, including a crawler, a form parser, and more.
Release Notes: This release adds scanning for directories and common files, and a panic button to stop actions. The core engine has been fixed to work more properly, and crawling has been fixed to be more aggressive and correct.
Release Notes: This release adds integer fuzzing and sunrpc fuzzing. The SPIKE Proxy has been updated with crawling, and msrpcfuzz has been fixed.
Release Notes: The SPIKE Proxy and dcedump branches were merged into the main distribution. The MSRPC fuzzer was improved. Scripts to fuzz MS SQL Server and MS Exchange Server were added.
Release Notes: An HTML-based GUI is now included, which allows the user to quickly look for SQL injection bugs/overflows on an entire site or rewrite individual requests.