RSS Feed
Download our iPhone app
Browse DevX
Sign up for e-mail newsletters from DevX


Tip: Tools that Highlight the Performance of the W3af Web Application Security Scanner

Explore the most useful tools that work in association with the w3af web application security scanner.


Some of the most useful tools that work in association with the w3af web application security scanner, are listed below:

  • Wapiti (http://wapiti.sourceforge.net): a Python-based script that discovers attackable URLs and then cycles through a list of evil parameters.
  • Nikto (http://cirt.net/nikto2): a Perl script that quickly summarizes system details and looks for the most obvious of defects.
  • Skipfish (https://code.google.com/p/skipfish/downloads/list): a C program that bashes away with many requests over a prolonged period. You can choose from different dictionaries of attacks. This is an excellent poor man's stress test; if your system stays up; you know that it has reached a minimal level of stability.
  • Nmap (http://nmap.org/): A simple to use, highly popular, award-winning network scanner.


Visit the DevX Tip Bank


Octavia Andreea Anghel is a senior PHP developer currently working as a primary trainer for programming teams that participate at national and international software-development contests. She consults on developing educational projects at a national level. She is a coauthor of the book "XML Technologies--XML in Java" (Albastra, ISBN 978-973-650-210-1), for which she wrote the XML portions. In addition to PHP and XML, she's interested in software architecture, web services, UML, and high-performance unit tests.
Email AuthorEmail Author
Close Icon
Thanks for your registration, follow us on our social networks to keep up-to-date