Wapiti Logo

Wapiti

0
Free
Visit Website

The web-application vulnerability scanner Wapiti allows you to audit the security of your websites or web applications. It performs 'black-box' scans by crawling webpages, looking for scripts and forms to inject data, and acts like a fuzzer to test vulnerabilities. Wapiti modules cover SQL Injections, Cross Site Scripting, File disclosure, Command Execution, XXE injection, CRLF Injection, Shellshock, Server Side Request Forgery, and more.

FEATURES

ALTERNATIVES

A wargame designed to test your hacking skills and knowledge

Open source web application security scanner with 200+ vulnerability identification capabilities.

tfsec is being replaced by Trivy, a more comprehensive open-source security solution

Command line interface for managing and inspecting images, policies, subscriptions, and registries with support for various operating systems and packages.

DOM-based XSS vulnerability scanner

Finds publicly known security vulnerabilities in a website's frontend JavaScript libraries.

A list of vulnerable applications for testing and learning

A tool for scanning and identifying potential security risks in GitHub organizations, users, and repositories.