w3af Alternatives

Nikto is an Open Source (GPL) web server scanner which performs comprehensive tests against web...

Burp Suite is an integrated platform for performing security testing of web applications.

Powerful SaaS integration toolkit for SaaS developers - create, amplify, manage and publish native integrations from within your app.

Try for free paid Free Trial

Audit your website security and web applications for SQL injection, Cross site scripting and other...

The Zed Attack Proxy (ZAP) is an easy to use integrated penetration testing tool for finding...

Open Source

Shodan is the world's first search engine for Internet-connected devices.

Nessus Professional is a security platform designed for businesses who want to protect the security of themselves, their clients, and their customers.

Subgraph Vega | Free and Open Source Web Application Vulnerability and Security Scanner

The Open Vulnerability Assessment System (OpenVAS) is a framework of several services and tools...

Wapiti allows you to audit the security of your web applications. Wapiti is a command line tool.

Grabber is a web application scanner. It detects vulnerabilities in your website.

A fully automated, active web application security reconnaissance tool.

Arachni is a Free/Public-Source Web Application Security Scanner aimed towards helping users evaluate the security of web applications.

Open Source

PunkSPIDER is a global-reaching web application vulnerability search engine.