W3af is a open source web application security scanner framework. w3af is a Web Application Attack and Audit Framework. The project’s goal is to create a framework to help you secure your web applications by finding and exploiting all web application vulnerabilities.
W3af is an extremely popular, powerful, and flexible framework for finding and exploiting web application vulnerabilities. It is easy to use and extend and features dozens of web assessment and exploitation plugins. In some ways it is like a web-focused Metasploit.
This framework is proudly developed using Python to be easy to use and extend, and licensed under GPLv2.0.
Download Here ::
git clone https://github.com/andresriancho/w3af.git
Official Website ::http://w3af.org/