IronWASP is an open source web application security scanning platform which is designed to assess the security of web applications, detect vulnerabilities, and provide guidance on how to remediate them. It is a comprehensive suite of tools that covers the complete range of security testing, from manual pentesting to automated scanning. It supports testing of all major web application technologies such as ASP.NET, Java, PHP, Ruby, and Python. IronWASP provides a powerful graphical interface for performing web security scans, and the reports generated are highly detailed and customizable. It also offers a range of tools for manual testing and exploitation, such as fuzzing and scripting. IronWASP also allows for automation of scanning and remediation processes, with APIs for integration with other tools and services. IronWASP is designed to be used by everyone from developers to penetration testers and system administrators.
Skipfish is no longer maintained. The latest version, 2.10 beta, released in December 2012, is still available for download from Google Code Archive