Tag: tool of the day

Wapiti allows you to audit the security of your websites or web applications.

The Apache JMeter™ application is open source software, a 100% pure Java application designed to load test functional behavior and ...

ImmuniWeb® On-Demand delivers scalable, rapid and DevSecOps-enabled web application penetration testing with tailored remediation guidelines and zero false-positives SLA.

Wfuzz can be used for finding resources not linked, bruteforce GET and POST parameters for checking different kind of injections.

XSScrapy is an application based on Scrapy and allows us to find XSS vulnerabilities and SQL-injection-type vulnerabilities.

WebScarab is designed to be a tool for anyone who needs to expose the workings of an HTTP(S) based application, ...

The OWASP Zed Attack Proxy (ZAP) is one of the world’s most popular free security tools and is actively maintained ...

Powerfuzzer is a highly automated and fully customizable web fuzzer (HTTP protocol based application fuzzer) based on many other Open ...

w3af is a Web Application Attack and Audit Framework which aims to identify and exploit all web application vulnerabilities.

Cross Site “Scripter” (aka XSSer) is an automatic -framework- to detect, exploit and report XSS vulnerabilities in web-based applications.