Wapiti Logo

Wapiti

0
Free
Visit Website

The web-application vulnerability scanner Wapiti allows you to audit the security of your websites or web applications. It performs 'black-box' scans by crawling webpages, looking for scripts and forms to inject data, and acts like a fuzzer to test vulnerabilities. Wapiti modules cover SQL Injections, Cross Site Scripting, File disclosure, Command Execution, XXE injection, CRLF Injection, Shellshock, Server Side Request Forgery, and more.

FEATURES

ALTERNATIVES

LeakIX is a red-team search engine that indexes mis-configurations and vulnerabilities online.

A vulnerability assessment and management tool that uses patented technology to accurately identify vulnerabilities and prioritize them by risk.

A tool for scanning websites with open .git repositories and dumping their content for Bug Hunting/Pentesting Purposes.

A multithreaded vulnerability scanner for web-based applications

A demonstration site for the Acunetix Web Vulnerability Scanner, intentionally vulnerable to various web-based attacks.

A Capture The Flag (CTF) platform for testing computer security skills

Compares target's patch levels against Microsoft vulnerability database and detects missing patches.

JavaScript library scanner and SBOM generator