A list of open source web security scanners on GitHub and GitLab, ordered by Stars. It does not provide in-depth analysis – for more analysis or a wider range of tools, see the links below.
Note that some large projects have multiple repos – in which case the second most relevant repo is included immediately after and is indented.
Tools which can find a range of ‘unknown’ vulnerabilities on any websites.
| Main Site | Last Commit | Committers | Stars |
|---|---|---|---|
| ZAP | |||
| – ZAP Extensions | |||
| Hetty | |||
| W3af | |||
| Arachni | |||
| Astra | |||
| Wapiti | |||
| Skipfish | |||
| Sitadel | |||
| Taipan | |||
| Vega | |||
| Reaper | |||
| BrowserBruter | |||
| Tuplar | |||
| Ugly-duckling | |||
| Jawfish | |||
| Pākiki | |||
| Browserker |
For more information click here.
MassVulScan is a powerful network scanning tool designed for pentesters and system administrators to identify…
The-XSS-Rat, an experienced ethical hacker, provides valuable insights into the world of cross-site scripting (XSS)…
NimPlant C2 is a minimal Proof-of-Concept (PoC) beacon written in C, designed to operate as…
The Embedded USB Debugger (EUD) is a sophisticated tool developed by Qualcomm to enhance the…
Unleashed Recompiled is an unofficial PC port of Sonic Unleashed, created through the process of…
XenonRecomp is a powerful tool designed to convert Xbox 360 executables into C++ code, allowing…