Alternatives to w3af

Shodan

Shodan is a search engine that allows users to discover and explore the Internet through a powerful set of tools and filters. It scans the Internet and indexes connected devices, services, and ports and presents them in an organized manner for easy access and review. Shodan provi...

Zed Attack Proxy

Zed Attack Proxy (ZAP) is an open source security and privacy application designed to help web application security professionals assess the security of their web applications. It is a powerful tool that can be used to test the security of web applications, detect common vulnerab...

Nikto

Nikto is a web security and vulnerability scanner designed to detect potential security issues on web servers, including those running on Apache, IIS, and other web servers. It scans for various common web application vulnerabilities, such as cross-site scripting (XSS), SQL injec...

Acunetix

Acunetix is a web application security scanner that helps organizations detect and fix vulnerabilities in their web applications, websites, and web services. It is a comprehensive and automated security scanner that can detect hundreds of different vulnerabilities, including SQL ...

Burp Suite

Burp Suite is an integrated platform for performing security testing of web applications. It is designed for professionals and allows them to carry out a full range of tests, from initial mapping and analysis of an application's attack surface, through to finding and exploiting s...

skipfish

Skipfish is a web application security reconnaissance tool. It is designed to scan web applications to detect security issues and vulnerabilities. It is an automated, active web application security reconnaissance tool written in C. It performs a recursive crawl and dictionary-ba...

Skipfish is no longer maintained. The latest version, 2.10 beta, released in December 2012, can still be downloaded from Google Code Archive.

Guest

IronWASP

IronWASP is an open source web application security scanning platform which is designed to assess the security of web applications, detect vulnerabilities, and provide guidance on how to remediate them. It is a comprehensive suite of tools that covers the complete range of securi...

Netsparker

Netsparker is an automated web application security scanner that helps organizations identify, analyze, and mitigate vulnerabilities in web applications and web services. It uses a combination of advanced vulnerability detection techniques, such as black-box scanning, automated a...

wapiti

Wapiti is a free and open-source application designed to scan web applications for known vulnerabilities. It performs black-box scans and can be used to detect a variety of problems such as SQL injection, cross-site scripting, and directory traversal. Wapiti is written in Python ...

Arachni

Arachni is a web application security scanner designed to help organizations identify and address potential security vulnerabilities in their web applications. It is a free, open source tool that is used to detect and identify known and unknown vulnerabilities in web applications...

Websecurify

Websecurify is a comprehensive cloud-based security and privacy application designed to help organizations of all sizes secure and protect their web applications, websites, and mobile applications. It provides a comprehensive suite of automated security testing and vulnerability ...

Probe.ly

Probe.ly is a comprehensive web application security platform that helps organizations develop, test, and protect their web applications. It provides a comprehensive solution to the security risks associated with web applications. With Probe.ly, organizations can quickly identify...

HTTPCS Security

HTTPCS Security is an application and website security solution designed to help organizations protect their web applications from malicious attacks. It provides an integrated suite of security capabilities, including real-time monitoring, intrusion detection, web application fir...

SecApps

SecApps is a suite of security and privacy applications designed to help individuals, small businesses and larger organizations protect their data and secure their systems. It offers a range of applications for securing the privacy of data, encrypting communications, and protecti...

WebARX

WebARX is a software and application development platform that provides a suite of tools for developers to create, manage, and protect their web applications. It is designed to provide an easy-to-use, intuitive, and secure environment for developers to work on their websites and ...

Tamper Data

Tamper Data is a Firefox add-on that allows users to modify HTTP/HTTPS headers and post parameters, monitor and analyze website traffic, and tamper with requests. It can be used to intercept, observe and modify traffic from virtually any application that uses the HTTP or HTTPS pr...

Discontinued The extension is no longer being developed since 2010 and is not compatible with Firefox 57 and later versions. It still works in XUL-based Firefox forks such as https://alternativeapp.info/software/waterfox/ and https://alternativeapp.info/software/palemoon/.

Guest

Intruder

An Intruder app (or website) is a security and privacy application that helps protect a user's private data from unauthorized access. It monitors a user's activity and blocks any suspicious activity or attempts to access the user's data. It also provides logging and reporting fea...

Ammonite

Ammonite is a powerful development software and application that is used to create and manage web-based applications. It is built on the popular Node.js platform, and provides users with an intuitive, easy-to-use interface. It provides users with a comprehensive set of developmen...

Golem Security Scanner

Golem Security Scanner is a comprehensive security scanning application that helps users detect and manage security risks associated with Internet-connected devices. It scans devices and networks for potential security risks, identifies any malicious activity, and provides detail...

w3af

Description

Categories

Alternatives