Top 12 Open-Source Alternatives to w3af

The top open-source alternatives to w3af are Zed Attack Proxy, Arachni, and IVRE. One of the criteria for ordering this list is the number of mentions that products have on reliable external sources. You can suggest additional sources through the form here.

Zed Attack Proxy Landing Page
1

Zed Attack Proxy

The Zed Attack Proxy (ZAP) is an easy to use integrated penetration testing tool for finding...
Pricing:
- Open Source
#Web Application Security #Security #Security & Privacy
Arachni Landing Page
2

Arachni

Arachni is a Free/Public-Source Web Application Security Scanner aimed towards helping users evaluate the security of web applications.
Pricing:
- Open Source
#Security #Web Application Security #Monitoring Tools
IVRE Landing Page
3

IVRE

Network recon framework, including a web interface to browse Nmap scan results.
Pricing:
- Open Source
#Web Application Security #Attack Surface Management #Security 1 social mentions
OWASP Amass Landing Page
4

OWASP Amass

An advanced open source tool to help information security professionals perform network mapping of attack surfaces and external asset discovery using open source information gathering and active reconnaissance techniques!
Pricing:
- Open Source
#Security #Monitoring Tools #Cyber Security 1 social mentions
mitmproxy Landing Page
5

mitmproxy

mitmproxy is an SSL-capable man-in-the-middle proxy for HTTP.
Pricing:
- Open Source
#Developer Tools #Security #Software Development 81 social mentions
SpiderFoot Landing Page
6

SpiderFoot

Open source intelligence (OSINT) automation tool.
Pricing:
- Open Source
#Security & Privacy #Tool #Cyber Security
Zabbix Landing Page
7

Zabbix

Track, record, alert and visualize performance and availability of IT resources
Pricing:
- Open Source
- Free
#Monitoring Tools #Performance Monitoring #DevOps Tools 5 social mentions
Criminal IP Landing Page
8

Criminal IP

Criminal IP protects IT assets and businesses by analyzing all years of cyber threats and prediciting exploits. Criminal IP provides real-time intelligence to enhance cybersecurity competencies in all aspects.
Pricing:
- Open Source
- Freemium
- Free Trial
#Security #Cyber Security #Monitoring Tools
HTTP Toolkit Landing Page
9

HTTP Toolkit

Beautiful, cross-platform & open-source tools to debug, test & build with HTTP(S). One-click setup for browsers, servers, Android, CLI tools, scripts and more.
Pricing:
- Open Source
- Freemium
- €7.0 / Monthly (for a Pro subscription)
#Software Development #Development Tools #Security 24 social mentions
Snyk Landing Page
10

Snyk

Snyk helps you use open source and stay secure. Continuously find and fix vulnerabilities for npm, Maven, NuGet, RubyGems, PyPI and much more.
Pricing:
- Open Source
#Security #Security Monitoring #Security CI 85 social mentions
Wireshark Landing Page
11

Wireshark

Wireshark is a network protocol analyzer for Unix and Windows. It lets you capture and interactively browse the traffic running on a computer network.
Pricing:
- Open Source
#Monitoring Tools #Log Management #Performance Monitoring 11 social mentions
Rapid7 Landing Page
12

Rapid7

Find security issues, verify vulnerability mitigations & manage security assessments with Metasploit. Get the world's best penetration testing software now. DownloadPen testing software to act like an attacker.
Pricing:
- Open Source
#Security #Security & Privacy #Monitoring Tools 1 social mentions