wwwhack 1.9 – Download wwwhack19.zip Web Hacking Tool
WWWhack is a brute force utility that will try to crack web sites guarded by an web access password. This utility can use a word file or try all possible combinations, and by trial-and-error, will...
View ArticleOdysseus Win32 Proxy & Telemachus HTTP Transaction Analysis
Introducing a pair of tools that go well together and give you some good control for HTTP transaction analysis and looking at the security of web applications. Odysseus is a tool designed for testing...
View ArticleClik here to view.
Fierce Domain Scanner Released – Domain Reconnaissance Tool
Fierce domain scan was born out of personal frustration after performing a web application security audit. It is traditionally very difficult to discover large swaths of a corporate network that is...
View ArticleOWASP – SQLiX Project – SQL Injection Scanner
SQLiX, coded in Perl, is a SQL Injection scanner, able to crawl, detect SQL injection vectors, identify the back-end database and grab function call/UDF results (even execute system commands for...
View ArticleWeb Security Dojo – Training Environment For Web Application Security
Web Security Dojo is a free open-source self-contained training environment for Web Application Security penetration testing. Tools + Targets = Dojo What? Various web application security testing...
View Articlex5s – Automated XSS Security Testing Assistant
x5s is a Fiddler add-on which aims to assist penetration testers in finding cross-site scripting vulnerabilities. It’s main goal is to help you identify the hotspots where XSS might occur by:...
View ArticleArachni – Web Application Vulnerability Scanning Framework
Arachni is a feature-full and modular Ruby framework that allows penetration testers and administrators to evaluate the security of web applications. Arachni is smart, it trains itself with every HTTP...
View ArticleLFIMAP – Scan For Files Vulnerable To LFI (Local File Inclusion)
There are some existing tools that deal with LFI vulnerabilities such as fimap the Remote & Local File Inclusion (RFI/LFI) Scanner and inspathx a Tool For Finding Path Disclosure Vulnerabilities...
View ArticleVega – Open Source Cross Platform Web-Application Security Assessment Platform
Vega is an open source platform to test the security of web applications. Vega can help you find and validate SQL Injections, Cross-Site Scripting (XSS), inadvertently disclosed sensitive information,...
View ArticleLilith – Web Application Security Audit Tool
LiLith is a tool written in Perl to audit web applications. This tool analyses webpages and looks for html form tags , which often refer to dynamic pages that might be subject to SQL injection or other...
View ArticleSecurity Compass Web Application Analysis Tool – SWAAT
Announcing a new web application source code analysis tool called the Securitycompass Web Application Analysis Tool or SWAAT. You may know it as a static analysis tool. Currently in its beta release,...
View ArticleSecurity Compass Web Application Analysis Tool – SWAAT
Views: 10,376 Announcing a new web application source code analysis tool called the Securitycompass Web Application Analysis Tool or SWAAT. You may know it as a static analysis tool. Currently in its...
View ArticleOdysseus Win32 Proxy & Telemachus HTTP Transaction Analysis
Views: 11,895 [ad] Introducing a pair of tools that go well together and give you some good control for HTTP transaction analysis and looking at the security of web applications. Odysseus is a tool...
View ArticleFierce Domain Scanner Released – Domain Reconnaissance Tool
Views: 13,699 Fierce domain scan was born out of personal frustration after performing a web application security audit. It is traditionally very difficult to discover large swaths of a corporate...
View ArticleOWASP – SQLiX Project – SQL Injection Scanner
Views: 23,805 [ad] SQLiX, coded in Perl, is a SQL Injection scanner, able to crawl, detect SQL injection vectors, identify the back-end database and grab function call/UDF results (even execute system...
View ArticleWeb Security Dojo – Training Environment For Web Application Security
Views: 12,990 [ad] Web Security Dojo is a free open-source self-contained training environment for Web Application Security penetration testing. Tools + Targets = Dojo What? Various web application...
View Articlex5s – Automated XSS Security Testing Assistant
Views: 7,783 [ad] x5s is a Fiddler add-on which aims to assist penetration testers in finding cross-site scripting vulnerabilities. It’s main goal is to help you identify the hotspots where XSS might...
View ArticleArachni – Web Application Vulnerability Scanning Framework
Views: 13,240 Arachni is a feature-full and modular Ruby framework that allows penetration testers and administrators to evaluate the security of web applications. Arachni is smart, it trains itself...
View ArticleLFIMAP – Scan For Files Vulnerable To LFI (Local File Inclusion)
Views: 10,988 There are some existing tools that deal with LFI vulnerabilities such as fimap the Remote & Local File Inclusion (RFI/LFI) Scanner and inspathx a Tool For Finding Path Disclosure...
View ArticleLilith – Web Application Security Audit Tool
Views: 13,244 LiLith is a tool written in Perl to audit web applications. This tool analyses webpages and looks for html form tags , which often refer to dynamic pages that might be subject to SQL...
View Article
