SHODAN SHODAN is a search engine that lets you find specific computers (routers, servers, etc.) using a variety of filters. Some have also described it as a public port scan... Free Web Search IP addresses Security focused Add a feature 14 Like
Burp Suite Burp Suite is an integrated platform for performing security testing of web applications. Its various tools work seamlessly together to support the entire testing... Freemium Mac OS X Windows Linux BSD No features added Add a feature 27 Like
Nikto Nikto is an Open Source (GPL) web server scanner which performs comprehensive tests against web servers for multiple items, including over 6400 potentially dangerous... Free Open Source Mac OS X Windows Linux No features added Add a feature 17 Like
skipfish A fully automated, active web application security reconnaissance tool. Key features: High speed: pure C code, highly optimized HTTP handling, minimal CPU footprint -... Free Open Source Mac OS X Windows Linux BSD Command line interface Heuristic Detection Add a feature 14 Like Discontinued Skipfish is no longer maintained. Last version, 2.10 beta, released in December 2012, can be still downloaded from Google Code Archive
Acunetix Audit your website security and web applications for SQL injection, Cross site scripting and other web vulnerabilities with Acunetix Web Security Scanner. Download Free... Commercial Windows Web Wordpress No features added Add a feature 10 Like
IronWASP IronWASP (Iron Web application Advanced Security testing Platform) is an open source system for web application vulnerability testing. It is designed to be customizable... Free Open Source Mac OS X Windows Linux Penetration Testing Add a feature 5 Like
w3af w3af is a Web Application Attack and Audit Framework Free Open Source Windows Linux No features added Add a feature 11 Like
wapiti Wapiti allows you to audit the security of your web applications. Wapiti is a command line tool. Free Open Source Windows Linux Command line interface Security focused Add a feature 3 Like
Websecurify Websecurify is a powerful web application security testing environment designed from the ground up to provide the best combination of automatic and manual vulnerability... Commercial Mac OS X Windows Linux Penetration Testing Security focused Add a feature 5 Like
CWIS website antivirus The Antivirus Scanner CWIS is a lightweight antivirus scanner application. The scanner designed to detect adware and malware, backdoors and exploits, phishing code... Freemium Linux Joomla PHP Wordpress No features added Add a feature 3 Like
Tamper Data Firefox add-on that lets you change headers and request parameters before they're sent to the server. Unlike proxy request modifiers, it's integrated into the... Free Open Source Mac OS X Windows Linux Firefox Firefox extension Legacy Firefox Addon Penetration Testing Add a feature 3 Like Discontinued The extension is no longer developed since 2010 and it's not compatible with Firefox 57 and later. It still works on XUL-based Firefox forks like https://alternativeto.net/software/waterfox/ and https://alternativeto.net/software/palemoon/
Intruder Intruder is a security monitoring platform for internet-facing systems. Intruder provides an easy to use security solution which continually scans your digital... Commercial Web Penetration Testing Add a feature 8 Like
Ammonite Ammonite is a web application security scanner extension for Fiddler. Ammonite detects common vulnerabilities such as SQL injection, OS command injection, cross-site... Commercial Windows Fiddler Penetration Testing Add a feature 0 Like
