Zed Attack Proxy The Zed Attack Proxy (ZAP) is an easy to use integrated penetration testing tool for finding vulnerabilities in web applications. It is designed to be used by people... Free Open Source Mac OS X Windows Linux Penetration Testing Add a feature 16 Like
SHODAN SHODAN is a search engine that lets you find specific computers (routers, servers, etc.) using a variety of filters. Some have also described it as a public port scan... Free Web Search IP addresses Security focused Add a feature 14 Like
Nessus The Nessus vulnerability scanner is the world-leader in active scanners, featuring high-speed discovery, configuration auditing, asset profiling, sensitive data... Commercial Mac OS X Windows Linux Android iPhone No features added Add a feature 22 Like
Nikto Nikto is an Open Source (GPL) web server scanner which performs comprehensive tests against web servers for multiple items, including over 6400 potentially dangerous... Free Open Source Mac OS X Windows Linux No features added Add a feature 17 Like
Burp Suite Burp Suite is an integrated platform for performing security testing of web applications. Its various tools work seamlessly together to support the entire testing... Freemium Mac OS X Windows Linux BSD No features added Add a feature 27 Like
OpenVAS The Open Vulnerability Assessment System (OpenVAS) is a framework of several services and tools offering a comprehensive and powerful vulnerability scanning and... Free Open Source Linux No features added Add a feature 13 Like
Arachni Arachni is an Open Source, feature-full, modular, high-performance Ruby framework aimed towards helping penetration testers and administrators evaluate the security of... Free Open Source Mac OS X Windows Linux No features added Add a feature 2 Like
Sucuri Sucuri is the de facto standard in website malware monitoring and cleanup. You get hacked, get a virus or trojan, we clean up the mess! No need to worry about malware... Commercial Web Wordpress No features added Add a feature 7 Like
IronWASP IronWASP (Iron Web application Advanced Security testing Platform) is an open source system for web application vulnerability testing. It is designed to be customizable... Free Open Source Mac OS X Windows Linux Penetration Testing Add a feature 5 Like
skipfish A fully automated, active web application security reconnaissance tool. Key features: High speed: pure C code, highly optimized HTTP handling, minimal CPU footprint -... Free Open Source Mac OS X Windows Linux BSD Command line interface Heuristic Detection Add a feature 14 Like Discontinued Skipfish is no longer maintained. Last version, 2.10 beta, released in December 2012, can be still downloaded from Google Code Archive
Websecurify Websecurify is a powerful web application security testing environment designed from the ground up to provide the best combination of automatic and manual vulnerability... Commercial Mac OS X Windows Linux Penetration Testing Security focused Add a feature 5 Like
w3af w3af is a Web Application Attack and Audit Framework Free Open Source Windows Linux No features added Add a feature 11 Like
Wordfence The Wordfence WordPress security plugin provides free enterprise-class WordPress security, protecting your website from hacks and malware. Freemium Self-Hosted Wordpress No features added Add a feature 5 Like
Virusdie All-in-One cloud-based, simple, powerful and gorgeous website security tools built for everyone. It helps you clean your websites from malware automatically like a... Commercial Linux Web No features added Add a feature 7 Like
Netsparker Netsparker is the only False-positive-free web application security scanner. Simply point it at your website and it will automatically discover the flaws that could... Commercial Windows No features added Add a feature 8 Like
