Web Application Analysis

Open-Source Web Scanners : A Detailed List Of Tools From GitHub And GitLab

A list of open source web security scanners on GitHub and GitLab, ordered by Stars. It does not provide in-depth analysis – for more analysis or a wider range of tools, see the links below.

Note that some large projects have multiple repos – in which case the second most relevant repo is included immediately after and is indented.

General Purpose Web Scanners

Tools which can find a range of ‘unknown’ vulnerabilities on any websites.

Main SiteLast CommitCommittersStars
ZAP
– ZAP Extensions
Hetty
W3af
Arachni
Astra
Wapiti
Skipfish
Sitadel
Taipan
Vega
Reaper
BrowserBruter
Tuplar
Ugly-duckling
Jawfish
Pākiki
Browserker

For more information click here.

Varshini

Varshini is a Cyber Security expert in Threat Analysis, Vulnerability Assessment, and Research. Passionate about staying ahead of emerging Threats and Technologies.

Recent Posts

Bash Arrays Explained Simply: Beginner’s Guide with Examples

If you’re learning Bash scripting, one of the most useful features you’ll come across is…

50 minutes ago

Bash For Loop Examples Explained Simply for Beginners

If you are new to Bash scripting or Linux shell scripting, one of the most…

11 hours ago

How Does a Firewall Work Step by Step

How Does a Firewall Work Step by Step? What Is a Firewall and How Does…

2 days ago

ROADTools: The Modern Azure AD Exploration Framework

ROADTools is a powerful framework designed for exploring and interacting with Microsoft Azure Active Directory…

5 days ago

How to Enumerate Microsoft 365 Groups Using PowerShell and Python

Microsoft 365 Groups (also known as M365 Groups or Unified Groups) are at the heart…

5 days ago

SeamlessPass: Using Kerberos Tickets to Access Microsoft 365

SeamlessPass is a specialized tool designed to leverage on-premises Active Directory Kerberos tickets to obtain…

6 days ago