Web Security Tools

Security of any kind is a hot topic these days, and with good reason.
You hear about hacks involving large business enterprises, major email servers, Social Media, and even the Government where you would assume that their security is at the highest level.
People’s privacy and vital information are at risk here.

Here is a list of 15 web security tool that may help you find vulnerabilities in your code, server or website. Some are simple and online, while others may be more complex involving downloading the software for use.

Hope these tools help!
Read the Post Version

Web Security Tools

Analyze websites cyber security and vulnerabilities.
ObservatoryObservatory by Mozilla is a project designed to help developers, system administrators, and security professionals configure their sites safely and securely.X
haveibeenpwnedThe term ‘pwned’ is slang for ‘owned’ which in the security industry means “to have your data or system compromised”.X
MetasploitA collaboration of the open source community and Rapid7. Our penetration testing software, Metasploit, helps verify
vulnerabilities and manage security assessments.
Theme CheckThemecheck.org is a quick service that lets you verify WordPress themes for security and code quality.
This service is free and compatible with Joomla templates.
VirusTotalVirusTotal is a free service that analyzes suspicious files and URLs and facilitates the quick detection of viruses, worms, trojans, and all kinds of malware. (files, url, ip)X
FOCAFOCA (Fingerprinting Organizations with Collected Archives) is a tool used mainly to find metadata and hidden information in the documents its scans. These documents may be on web pages, and can be downloaded and analyzed with FOCA.
It is capable of analyzing a wide variety of documents, with the most common being Microsoft Office, Open Office, or PDF files, although it also analyzes Adobe InDesign or SVG files, for instance.
CymonCymon is the largest open tracker of malware, phishing, botnets, spam, and more. Brought to you by eSentire.X
Mnemonic PassiveDNS service lets you look up domains and IPs and what they've recently resolved to without performing an actual DNS query.X
LnavIt automatically detects your log file formats, provides syntax highlighting and a host of other features to view and analyze log files. It can be invaluable when analyzing a compromised website.X
UnPHPUnPHP is a free service for analyzing obfuscated and malicious PHP code.X
OpenvasThe world's most advanced Open Source vulnerability scanner and managerX
SQLmapAn open source penetration testing tool that automates the process of detecting and exploiting SQL injection flaws and taking over database servers.X
BeEFBeEF is short for The Browser Exploitation Framework. It is a penetration testing tool that focuses on the web browser.X
FireFox HackBarThis toolbar will help you in testing sql injections, XSS holes and site security. It is NOT a tool for executing standard exploits and it will NOT teach you how to hack a site. Its main purpose is to help a developer do security audits on his code. If you know what your doing, this toolbar will help you do it faster.X
NmapNetwork Mapper is a security scanner, used to discover hosts and services on a computer network, thus building a "map" of the network. To accomplish its goal, Nmap sends specially crafted packets to the target host(s) and then analyzes the responses.X
Read the Post Version

Share This