open-source-web-scanners

A list of open source web security scanners on GitHub.

General Purpose Web Scanners

Tools which can find a range of 'unknown' vulnerabilities on any websites.

Main Site	Last Commit	Committers	Stars
Arachni
Astra
Ffuf
Hetty
Jawfish
Sitadel
Skipfish
Taipan
Ugly-duckling
Vega
W3af
Wapiti
Wfuzz
ZAP

Infrastructure Web Scanners

Tools which can find a range of 'known' vulnerabilities on any websites.

Main Site	Last Commit	Committers	Stars
Nikto
Nuclei
Spaghetti
Striker
Yasuo

CMS Web Scanners

Tools which can find a range of 'known' vulnerabilities on one or more CMS websites.

Main Site	Last Commit	Committers	Stars
Clusterd
CMSScan
Droopescan
JoomScan
Volnx
WPscan

Contribute

PR's welcomed - template line (replace USER/REPO):

| []() | [![Last Commit](https://img.shields.io/github/last-commit/USER/REPO)](https://github.com/USER/REPO/commits) | [![Contributors](https://img.shields.io/github/contributors/USER/REPO)](https://github.com/USER/REPO/graphs/contributors) | [![Stars](https://img.shields.io/github/stars/USER/REPO)](https://github.com/USER/REPO/stargazers) |

groovecoder/open-source-web-scanners

open-source-web-scanners

General Purpose Web Scanners

Infrastructure Web Scanners

CMS Web Scanners

Contribute