AlternativeTo Logo

w3af Alternatives

w3af is described as 'Web Application Attack and Audit Framework' and is an app in the development category. There are more than 10 alternatives to w3af for a variety of platforms, including Windows, Linux, Mac, Online / Web-based and Wordpress. The best alternative is Burp Suite, which is free. Other great apps like w3af are OWASP Zed Attack Proxy (ZAP), Nikto, Probely and Acunetix.

w3af alternatives are mainly Vulnerability Scanners but may also be WAFs. Filter by these if you want a narrower list of alternatives or looking for a specific functionality of w3af.
This page was last updated
w3af iconw3af
  14
  • FreeOpen Source
  • Windows
  • Linux

w3af is a Web Application Attack and Audit Framework.

Learn more about w3af

  1. Burp Suite is an integrated platform for performing security testing of web applications.

    Screenshot
  2. OWASP Zed Attack Proxy (ZAP) icon

    OWASP Zed Attack Proxy (ZAP)

    • FreeOpen Source
    • Mac
    • Windows
    • Linux

    The Zed Attack Proxy (ZAP) is an easy to use integrated penetration testing tool for finding vulnerabilities in web applications.

    Screenshot


  3. Nikto icon

    Nikto

    • FreeOpen Source
    • Mac
    • Windows
    • Linux

    Nikto is an Open Source (GPL) web server scanner which performs comprehensive tests against web servers for multiple items, including over 6400 potentially dangerous files/CGIs, checks for outdated versions of over 1000 servers, and version specific problems on over 270 servers.

    Screenshot
  4. Probely is a top-tier cloud-based DAST Scanner designed for DevOps, empowering Security and Development teams to work together to secure their web applications and APIs.

    Scan page
  5. Acunetix icon

    Acunetix

    • Windows
    • Online
    • Wordpress

    Audit your website security and web applications for SQL injection, Cross site scripting and other web vulnerabilities with Acunetix Web Security Scanner. Download Free Edition!

    Screenshot


  6. Netsparker icon

    Netsparker

    • Windows

    Netsparker is the only False-positive-free web application security scanner. Simply point it at your website and it will automatically discover the flaws that could leave you dangerously exposed.

    Reverse Shell over SQL Injection
  7. Websecurify icon

    Websecurify

    • Mac
    • Windows
    • Linux

    Websecurify is a powerful web application security testing environment designed from the ground up to provide the best combination of automatic and manual vulnerability testing technologies.

    No screenshots yet
  8. HTTPCS Security icon

    HTTPCS Security

    • Online

    Put yourself in the shoes of a hacker! Without technical expertise, launch an audit to detect security flaws on your website or web application. Online website vulnerability scanner. No installation required. ISO & RGPD compliant. How to avoid hackers?

    Screenshot
  9. SecApps icon

    SecApps

    • FreemiumProprietary
    • Mac
    • Windows
    • Linux
    • Online
    • Chrome OS

    Find security vulnerabilities right from your browser. Experience the next generation security tools without the need to install any additional software.

    Screenshot
  10. wapiti icon

    wapiti

    • FreeOpen Source
    • Windows
    • Linux

    Wapiti allows you to audit the security of your web applications. Wapiti is a command line tool.

    No screenshots yet
Showing 10 of 21 alternatives