WebCruiser Web Vulnerability Scanner, an effective and powerful web penetration testing tool that will aid you in auditing your website!
It has a Crawler and a Vulnerability Scanner (SQL Injection, Cross Site Scripting etc.).
It can support scanning website as well as POC (Proof of concept) for web vulnerabilities: SQL Injection, Cross Site Scripting, Local File Inclusion, Remote File Inclusion, Redirect etc.
The most typical feature of WebCruiser comparing with other Web Vulnerability Scanners is that WebCruiser Web Vulnerability Scanner focuses on high risk vulnerabilities, and WebCruiser can scan a designated vulnerability type, or a designated URL, or a designated page separately, while the others usually will not.
V3.5.4 new features: Brute force tool optimization for CSRF token.
V3.5.3 new features: Optimization for Content-Type: multipart/form-data.
V3.5.2 new features: User-Agent/Referer SQL Injection for MySQL, and new test cases added.
V3.5.1 new features: Time-Based SQL Injection POC for MySQL.
V3.5.0 new features: SQL Injection for PostgreSQL & SQLite added.
V3.4.0 new features: Scan Obsolete Backup.
V3.3.0 new features: Optimization of SQL Injection Engine.
V3.2.1 new features: Scan Log available, and bug fix.
V3.1.0 new features: Scan LFI( Local File Inclusion), RFI( Remote File Inclusion), Redirect etc.
Test report available :
WebCruiser Web Vulnerability Scanner Test Report (0.7MB)
* Crawler(Site Directories and Files).
* Vulnerability Scanner: SQL Injection, Cross Site Scripting, LFI, RFI, Redirect, Backup etc.
* WAVSEP v1.5 SQL Injection & XSS test cases 100% covered.
* SQL Injection POC Tool: GET/Post/Cookie Injection POC(Proof of Concept).
* SQL Injection for SQLServer, MySQL, Oracle, DB2, Access, PostgreSQL, SQLite.
* POC Tool for XSS, LFI, RFI, Redirect etc.
* Resend & brute force Tool.
* Cookie Tool.
Windows 7/8, or Windows with .Net Framework 2.0 or 3.5 , IE8+
Personal : for security professionals, masters of individual websites etc., non-commercial usage, No function limit.
Enterprise: for enterprises, institution, or commercial organizations/usage, No function limit.
Personal edition and enterprise edition are all full function editions.