w3af | CyberSecTools

w3af

0 (0)

w3af is an open source web application security scanner that helps developers and penetration testers identify and exploit vulnerabilities in their web applications. The scanner can identify 200+ vulnerabilities, including Cross-Site Scripting, SQL injection, and OS commanding. Contributions are welcome, and the project is sponsored by Holm Security for automated vulnerability assessment.

Vulnerability Management

Free

appsec app-security vulnerability-scanning web-app-security web-application-security penetration-testing security-scanning

ALTERNATIVES

CloudJack

0 (0)

A tool that assesses AWS accounts for subdomain hijacking vulnerabilities in Route53 and CloudFront configurations.

Vulnerability Management

Free

aws security vulnerability

SentinelTestbed

0 (0)

A vulnerable web site for testing Sentinel features

Vulnerability Management

Free

pentest php security-testing vulnerable-apps web-app-security sqlite

Acunetix Web Vulnerability Scanner Demo Site

0 (0)

A demonstration site for the Acunetix Web Vulnerability Scanner, featuring intentionally vulnerable PHP code to test web application security.

Vulnerability Management

Free

appsec web-app-security sql-injection app-security vulnerability-scanning xss

Dnscan

0 (0)

Dnscan is a DNS reconnaissance tool that performs DNS scans, DNS cache snooping, and DNS amplification attack detection.

Vulnerability Management

Free

dns dns-reconnaissance

sqliv

0 (0)

A massive SQL injection vulnerability scanner

Vulnerability Management

Free

penetration-testing scanner security-testing sql-injection vulnerability-scanning

MCIR

0 (0)

A framework for building code injection vulnerability testbeds

Vulnerability Management

Free

appsec security-testing code-injection appsec-testing vulnerability-testing