Tag Archives: Web application scan

WAScan – Web Application Scanner Toolkit

WAScan is a Open Source web application security scanner. It is designed to find various vulnerabilities using "black-box"

YAWAST – Antecedent Web Application Security Toolkit

YAWAST is an application meant to simplify initial analysis and information gathering for penetration testers and security auditors.

RapidScan – Multi-Tool Web Vulnerability Scanner

RapidScan is a multiple scanning tools to find vulnerabilities, remove and avoid false-positives, correlate results and reduce time consumed in the enumeration phase by running specific test against your target.

CMSmap – CMS Security Scanner

CMSmap is a python open source CMS scanner that automates the process of detecting security flaws of the most popular CMSs.

XSStrike – Most advanced XSS Detection Suite

XSStrike is a Cross Site Scripting detection suite equipped with four hand written parsers, an intelligent payload generator, a powerful fuzzing engine and an incredibly fast crawler.

W3brute – Automatic Web Application Brute Force Attack Tool

w3brute is an open source penetration testing tool that automates attacks directly to the website's login page.

Burp Replicator- Automate Reproduction of Complex Vulnerabilities

Burp Replicator is another extension plugin that you can add to Burpsuite proxy tool. Replicator helps developers to reproduce issues discovered by pen testers. The pen tester produces a Replicator file which contains the findings in the report.