Penetration Testing Tools Page 4 of 4

Grabber is a web application scanner. Basically it detects some kind of vulnerabilities in your website.

ONYPHE is a search engine for open-source and cyber threat intelligence data collected by crawling various sources available on the Internet or by listening to Internet background noise.

Astra’s Pentest is a comprehensive penetration testing solution with an intelligent automated vulnerability scanner coupled with in-depth manual pentesting.

BabySploit is a penetration testing toolkit aimed at making it easy to learn how to use bigger, more complicated frameworks like Metasploit. With a very easy to use UI and toolkit, anybody from any experience level will find...

Damn Vulnerable Web App (DVWA) is a PHP/MySQL web application that is damn vulnerable. Its main goals are to be an aid for security professionals to test their skills and tools in a legal environment, help web developers better understand the processes of securing web...

Enriched and structured information about every host on the Internet. Non-intrusive internet scanner, whois, domain names & SSL certs database.

Find your vulnerabilities before others do. Schedule vulnerability scans for your servers and get notified when it's time to call your admin.

A cybersecurity service that provides hybrid penetration testing by combining AI automation with manual human expertise. Their core promise is "Zero False Positives," aiming to offer validated security intelligence rather than just automated scan results.

The Crashtest Security Suite is a web application and API vulnerability scanner. Our software provides fully automated security testing for your whole web application portfolio: detailed, accurate and easy to implement.

oneVault is a multi-purpose platform designed for organization's to not only help manage and improve the entire penetration testing process for pentest teams but also a solution for the customer, the recipient of those pentesting projects.

InsecureShop is an Android application that is designed to be intentionally vulnerable. The application serves as a platform to test your Android pentesting skills. The vulnerabilities present in this app are real and have been found during mobile pentests.