11 free Web security testing tools 02/23 Update SLTechnology News&Howtos

11 free Web security testing tools

2025-02-23 Update From: SLTechnology News&Howtos shulou NAV: SLTechnology News&Howtos > Servers >

Shulou(Shulou.com)06/02 Report--

1.Netsparker Community Edition (Windows)

This program can detect SQL injection and spread scripting events. When the test is complete, it will provide you with some solutions.

2.Websecurify (Windows, Linux, Mac OS X)

This is an easy-to-use open source tool, this program also has some human plug-ins support, can automatically detect web page vulnerabilities. After running, the test report can be generated in various formats.

3.Wapiti (Windows, Linux, Mac OS X)

This is an open source tool written in Python that detects web applications and detects injection points that exist in web pages.

4.N-Stalker Free Version (Windows)

This tool can detect more than 100 pages at a time, including the detection of spread scripts.

5.skipfish (Windows, Linux, Mac OS X)

This is a lightweight security testing tool that is very fast and can handle 2000 requests per second.

6.Scrawlr (Windows)

HP is a free software that detects SQL injection vulnerabilities.

7.Watcher (Windows)

This is a plug-in for Fiddler, which can be run silently in the background and can detect cross-domain submissions.

8.x5s (Windows)

It is also a Fiddler plug-in like the previous one, which is used to detect whether there are XSS vulnerabilities and whether there are characters such as filtering where the web page is provided to the user for input.

9.Exploit-Me (Windows, Linux, Mac OS X)

This is a Firefox plug-in, composed of XSS-Me,SQL Inject Me and Access-Me, when browsing the web will start to detect, can detect XSS vulnerabilities, SQL injection vulnerabilities and so on.

10.WebScarab (Windows, Linux, Mac OS X)

This is actually an agent software with many features that can detect XSS cross-site scripting vulnerabilities, SQL injection vulnerabilities, and so on.

11.Acunetix Free Version (Windows)

This is a free version, compared with the professional version, there are some functional limitations, but it can still be used to detect XSS vulnerabilities on the site.

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.

*The comments in the above article only represent the author's personal views and do not represent the views and positions of this website. If you have more insights, please feel free to contribute and share.