» skipfish - web application security scanner - 688 days ago (code.google.com)

Skipfish is a fully automated, active web application security reconnaissance tool. Key features include highly optimized HTTP handling, minimal CPU footprint,heuristics to support a variety of quirky web frameworks and mixed-technology sites, with automatic learning capabilities, on-the-fly wordlist creation, and form autocompletion.

browse: scanner, security, web application

» Sleuth - Web Application Auditing Tool - 132 days ago (sandsprite.com)

Sleuth is Web Application analysis tool. It has been designed to help you probe through a site to try to gather insight into how it works and how the authors designed it. Sleuth was born in the midst of a Web Application Security Audit when It felt that that a custom tool was needed to preform the job efficiently.

browse: auditing, scanner, sleuth, tools, web security

» Nikto - 132 days ago (cirt.net)

Nikto is an Open Source (GPL) web server scanner which performs comprehensive tests against web servers for multiple items, including over 3500 potentially dangerous files/CGIs, versions on over 900 servers, and version specific problems on over 250 servers. Scan items and plugins are frequently updated and can be automatically updated (if desired).

browse: cert, nikto, official site, scanner, tools, web security

» Nmap - Free Security Scanner For Network Exploration & Security Audits - 154 days ago (insecure.org)

Nmap ("Network Mapper") is a free and open source utility for network exploration or security auditing. Many systems and network administrators also find it useful for tasks such as network inventory, managing service upgrade schedules, and monitoring host or service uptime. Nmap uses raw IP packets in novel ways to determine what hosts are available on the network, what services (application name and version) those hosts are offering, what operating systems (and OS versions) they are running, what type of packet filters/firewalls are in use, and dozens of other characteristics. It was designed to rapidly scan large networks, but works fine against single hosts. Nmap runs on all major computer operating systems, and both console and graphical versions are available.

browse: audit, networks, nmap, scanner, security