Happy hunting!
Chris
- http://www.webresourcesdepot.com/category/extras/security/
- http://www.mavitunasecurity.com/communityedition/
- http://www.websecurify.com/
- http://www.ict-romulus.eu/web/wapiti/home
- http://nstalker.com/products/free
- http://code.google.com/p/skipfish/
- http://www.communities.hp.com/securitysoftware/blogs/spilabs/archive/2008/06/23/finding-sql-injection-with-scrawlr.aspx
- http://websecuritytool.codeplex.com/
- http://xss.codeplex.com/
- http://labs.securitycompass.com/index.php/exploit-me/
- http://www.owasp.org/index.php/Category:OWASP_WebScarab_Project
- http://www.acunetix.com/cross-site-scripting/scanner.htm
- http://www.dvwa.co.uk/ - test bed for tools, learning
- http://sec4app.com/