
WebReaver is an elegant, easy to use and fully-automated, web application security security testing tool for Mac, Windows and Linux, sui...
WebReaver is an elegant, easy to use and fully-automated, web application security security testing tool for Mac, Windows and Linux, sui...
SubBrute is a community driven project with the goal of creating the fastest, and most accurate subdomain enumeration tool. Some of th...
WebSlayer is a tool designed for brute forcing Web Applications, it can be used for finding resources not linked (directories, servl...
The OWASP Amass Project has developed a tool to help information security professionals perform network mapping of attack surfaces and p...
CommandoVM - a fully customized, Windows-based security distribution for penetration testing and red teaming. Penetration testers comm...
Sublist3r is a python tool designed to enumerate subdomains of websites using OSINT. It helps penetration testers and bug hunters collec...
Raptor is an Open Source Tool, your focus is study of attacks and find intelligent ways to block attacks. Raptor is made in pure C, don’...
SpiderFoot is a free, open-source footprinting tool , enabling you to perform various scans against a given domain name in order to obta...
XSSYA (Cross Site Scripting Scanner & Vulnerability Confirmation) written in python scripting language confirm the XSS Vulnerabili...
Sandcat Browser is the fastest web browser combined with the fastest scripting language packed with features for pen-testers . Sandcat...
Andiparos is a fork of the famous Paros Proxy . It is an open source web application security assessment tool that gives penetration ...
URLCrazy checks for mistyped domain names of websites. It can detect typo domain squatters and help protect your domain security by ...
Fiddler is a Web Debugging Proxy which logs all HTTP(S) traffic between your computer and the Internet. Fiddler allows you to inspect...
QualysGuard is a popular SaaS (software as a service) vulnerability management offering. It's web-based UI offers network discov...
Skipfish is an active web application security reconnaissance tool . It prepares an interactive sitemap for the targeted site by carryi...
GoLismero is an open source framework for security testing . It's currently geared towards web security, but it can easily be expa...
SAINT 8 is a fully-integrated security tool suite that combines vulnerability scanning , with penetration testing , social engineering ...
Web Application Firewalls (WAFs) can be detected through stimulus/response testing scenarios. Here is a short listing of possible detec...
The BlindElephant is a Web Application Fingerprinter attempts to discover the version of a (known) web application by comparing sta...
IronWASP (Iron Web application Advanced Security testing Platform) is an open source system for web application vulnerability testin...