A list of open source web security scanners on GitHub and GitLab, ordered by Stars. It does not provide in-depth analysis – for more analysis or a wider range of tools, see the links below.
Note that some large projects have multiple repos – in which case the second most relevant repo is included immediately after and is indented.
Tools which can find a range of ‘unknown’ vulnerabilities on any websites.
Main Site | Last Commit | Committers | Stars |
---|---|---|---|
ZAP | |||
– ZAP Extensions | |||
Hetty | |||
W3af | |||
Arachni | |||
Astra | |||
Wapiti | |||
Skipfish | |||
Sitadel | |||
Taipan | |||
Vega | |||
Reaper | |||
BrowserBruter | |||
Tuplar | |||
Ugly-duckling | |||
Jawfish | |||
Pākiki | |||
Browserker |
For more information click here.
This Python script for Linux can analyze Microsoft Windows *.msi Installer files and point out…
Bear C2 is a compilation of C2 scripts, payloads, and stagers used in simulated attacks…
Discover your application security risks and vulnerabilities in only a few minutes. In this guide…
The idea behind waymore is to find even more links from the Wayback Machine than…
The Pycript extension for Burp Suite is a valuable tool for penetration testing and security…
For official releases, refer to Dependency Track Docs >> Changelogs for information about improvements and…