| Template:Wikify is deprecated. Please use a more specific cleanup template as listed in the documentation. |
Web Application Security Scanners (or Web Application Vulnerability Scanners) are tools designed to automatically scan web applications for potential vulnerabilities. These tools differ from general vulnerability assessment tools in that they do not perform a broad range of checks on a myriad of software and hardware. Instead, they perform other checks, such as potential field manipulation and cookie poisoning, which allows a more focused assessment of web applications by exposing vulnerabilities of which standard VA tools are unaware.
Some Instances
Here is a list of known tools
Commercial tools
- Acunetix WVS by Acunetix
- AppScan by Watchfire, Inc.
- Hailstorm by Cenzic
- N-Stealth by N-Stalker
- NTOSpider by NTObjectives
- WebInspect by SPI Dynamics
- WebKing by Parasoft
Free/OpenSource Tools
- Grabber by Romain Gaucher
- Pantera by Simon Roses Femerling (OWASP Project)
- Paros by Chinotec
- Spike Proxy by Immunity (Now as OWASP Pantera)
- TestMaker by Pushtotest
- W3AF by Andres Riancho
- Wapiti by Nicolas Surribas
- WebScarab by Rogan Dawes of Aspect Security (OWASP Project)
 | This computing article is a stub. You can help Wikipedia by expanding it. |