Pricing type: Free
Web vulnerability scanner written in Python3
See the website


Wapiti is a command-line application that crawls web pages and searches for scripts or forms that enable user inputs and could be vulnerable to attack. Wapiti allows you to audit the security of your websites or web applications. It performs 'black-box' scans (it does not study the source code) of the web application by crawling the webpages of the deployed webapp, looking for scripts and forms where it can inject data.

Related tools (Security Testing)

Curated lists of tools, tips and resources for protecting digital security and privacy

Enter a URL and this tool will tell you if the website is violating GDPR laws.

List of Static Code Analyzers

DenyHosts is a script intended to be run by Linux system administrators to help thwart SSH server attacks (also known as dictionary based attacks and brute force attacks).