w3af, is a Web Application Attack and Audit Framework. The w3af core and it’s plugins are fully written in python, it identifies more than 200 vulnerabilities and reduce your site’s overall risk exposure. Identify vulnerabilities like SQL Injection, Cross-Site Scripting, Guessable credentials, Unhandled application errors and PHP misconfigurations.
- Improved performance: your scans will run faster
- Improved quality: 1300+ unittests are run after each change to make sure we don’t add any regressions
- Now you’ll be able to easily integrate w3af into other projects with a simple import w3af
- Better documentation