andresriancho / w3af
w3af: web application attack and audit framework, the open source web vulnerability scanner.
☆4,711Updated 2 years ago
Alternatives and similar repositories for w3af
Users that are interested in w3af are comparing it to the libraries listed below
Sorting:
- Web Application Security Scanner Framework☆3,893Updated last year
- Nikto web server scanner☆9,243Updated last week
- Web application fuzzer☆6,169Updated 8 months ago
- Automated NoSQL database enumeration and web application exploitation tool.☆3,052Updated 9 months ago
- Next generation web scanner☆5,857Updated 9 months ago
- EyeWitness is designed to take screenshots of websites, provide some server header info, and identify default credentials if possible.☆5,284Updated 6 months ago
- Automated All-in-One OS Command Injection Exploitation Tool.☆5,250Updated this week
- Knock Subdomain Scan☆3,985Updated 5 months ago
- Patator is a multi-purpose brute-forcer, with a modular design and a flexible usage.☆3,715Updated 2 months ago
- Open Source Vulnerability Management Platform☆5,389Updated 2 weeks ago
- Advanced vulnerability scanning with Nmap NSE☆3,607Updated 8 months ago
- WAFW00F allows one to identify and fingerprint Web Application Firewall (WAF) products protecting a website.☆5,639Updated 4 months ago
- Server-Side Template Injection and Code Injection Detection and Exploitation Tool☆3,929Updated last year
- Git All the Payloads! A collection of web attack payloads.☆3,771Updated last year
- A Tool for Domain Flyovers☆5,758Updated 2 years ago
- A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and…☆3,787Updated 3 years ago
- Dictionary of attack patterns and primitives for black-box application fault injection and resource discovery.☆8,518Updated last year
- Network recon framework. Build your own, self-hosted and fully-controlled alternatives to Shodan / ZoomEye / Censys and GreyNoise, run yo…☆3,692Updated 2 weeks ago
- A DNS meta-query spider that enumerates DNS records, and subdomains.☆3,427Updated 3 years ago
- Reconnaissance tool for GitHub organizations☆6,023Updated 2 years ago
- Weaponized web shell☆3,297Updated 6 months ago
- Web path scanner☆12,860Updated 2 months ago
- Cross Site "Scripter" (aka XSSer) is an automatic -framework- to detect, exploit and report XSS vulnerabilities in web-based applications…☆1,303Updated 7 months ago
- DNS Enumeration Script☆2,763Updated last week
- Offensive Web Testing Framework (OWTF), is a framework which tries to unite great tools and make pen testing more efficient http://owtf.o…☆1,862Updated last month
- A tool to dump the login password from the current linux user☆3,945Updated last year
- NSE script based on Vulners.com API☆3,302Updated last year
- In-depth attack surface mapping and asset discovery☆12,957Updated this week
- Fast subdomains enumeration tool for penetration testers☆10,332Updated 9 months ago
- File upload vulnerability scanner and exploitation tool.☆3,198Updated this week