[WEB SECURITY] which is the best web application vulnerability scanner

Rohit Pitke rohirp92 at yahoo.com
Tue May 3 13:05:08 EDT 2011


My vote for Skipfish. Only problem is a lot of false positives.
But it has crawling feature.
Webshag is good for server hardening. Nikto for file/directory traversal 
attacks.




________________________________
From: 孙松柏 <lukesun629 at gmail.com>
To: websecurity at webappsec.org
Sent: Tue, May 3, 2011 7:52:11 AM
Subject: [WEB SECURITY] which is the best web application vulnerability scanner

which is the best web application vulnerability scanner .among the free software 
like
Arachni

JBrofuzz
Webshag
Websecurify
Zero Day Scan
Nikto
Wapiti
W3AF
Skipfish
Grendel-Scan
Grabber
Arachni
wikto
may be sth more and  support server client mode.

FIT1-213
Department of Computer Science
Tsinghua University, Beijing, 100084
http://about.me/anakin/bio
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.webappsec.org/pipermail/websecurity_lists.webappsec.org/attachments/20110503/e0e560ac/attachment-0003.html>


More information about the websecurity mailing list