w3af Alternatives

Nikto is an Open Source (GPL) web server scanner which performs comprehensive tests against web...

Burp Suite is an integrated platform for performing security testing of web applications.

Ensure healthy website performance, uptime, and free from vulnerabilities. Automatic checks for SSL Certificates, domains and monitor issues with your websites all from one console and get instant notifications on any issues.

Try for free freemium $9.0 / Monthly (Lite plan)

Audit your website security and web applications for SQL injection, Cross site scripting and other...

The Zed Attack Proxy (ZAP) is an easy to use integrated penetration testing tool for finding...

Open Source

Shodan is the world's first search engine for Internet-connected devices.

Nessus Professional is a security platform designed for businesses who want to protect the security of themselves, their clients, and their customers.

Subgraph Vega | Free and Open Source Web Application Vulnerability and Security Scanner

The Open Vulnerability Assessment System (OpenVAS) is a framework of several services and tools...

Wapiti allows you to audit the security of your web applications. Wapiti is a command line tool.

Grabber is a web application scanner. It detects vulnerabilities in your website.

A fully automated, active web application security reconnaissance tool.

PunkSPIDER is a global-reaching web application vulnerability search engine.

Arachni is a Free/Public-Source Web Application Security Scanner aimed towards helping users evaluate the security of web applications.

Open Source