Arachni
Arachni is a Free/Public-Source Web Application Security Scanner aimed towards helping users evaluate the security of web applications.
18 Alternatives To Arachni
Acunetix
Audit your website security and web applications for SQL injection, Cross site scripting and other…
Burp Suite
Burp Suite is an integrated platform for performing security testing of web applications.
Charles
HTTP proxy / HTTP monitor / Reverse Proxy
HTTP Toolkit
Beautiful, cross-platform & open-source tools to debug, test & build with HTTP(S). One-click setup for browsers, servers, CLI tools, scripts and more.
HTTPCS Security
Cyber security solution for protecting websites and web apps
Intruder
Intruder is a security monitoring platform for internet-facing systems.
Netsparker
Netsparker is a tool for scanning web sites for security vulnerabilities.
Nikto
Nikto is an Open Source (GPL) web server scanner which performs comprehensive tests against web…
Nmap
Nmap Free Security Scanner, Port Scanner, & Network Exploration Tool. Download open source software for Linux, Windows, UNIX, FreeBSD, etc.
OpenSCAP
SCAP is a line of standards managed by NIST.
Shodan
Shodan is the world’s first search engine for Internet-connected devices.
Websecurify
Websecurify free and premium security tools automatically scan websites for vulnerabilities like SQL Injection, Cross-site Scripting and others
Zed Attack Proxy
The Zed Attack Proxy (ZAP) is an easy to use integrated penetration testing tool for finding…
Zenmap
Zenmap is the official cross-platform GUI for the Nmap Security Scanner.
skipfish
A fully automated, active web application security reconnaissance tool.
w3af
w3af is a Web Application Attack and Audit Framework
wapiti
Wapiti allows you to audit the security of your web applications. Wapiti is a command line tool.