war-and-code / IronWASP Public

forked from Lavakumar/IronWASP

Notifications You must be signed in to change notification settings
Fork 2
Star 5

Graphical tool for testing web application security.

ironwasp.org

5 stars 55 forks Branches Tags Activity

Notifications

Name		Name	Last commit message	Last commit date
Latest commit History 20 Commits
Iron		Iron
IronWASP.sln		IronWASP.sln
IronWASP.suo		IronWASP.suo
IronWASP.v11.suo		IronWASP.v11.suo
IronWASP.v12.suo		IronWASP.v12.suo
Packages.dgml		Packages.dgml
README.md		README.md

Repository files navigation

IronWASP

Graphical tool for testing web application security.

Free and open source
GUI based and very easy to use, no security expertise required
Powerful and effective scanning engine
Supports recording login sequence
Reporting in both HTML and RTF formats (view the sample report)
Checks for over 25 different kinds of common web vulnerabilities
False positive detection support
False negative detection suppport
Industry-leading built-in scripting engine that supports Python and Ruby
Extensibile via plug-ins or modules in Python, Ruby, C# or VB.NET
Bundled with a growing number of modules built by security researchers
- WiHawk - wireless router vulnerability scanner - Anamika Singh
- XmlChor - XPATH injection exploitation tool - Harshal Jamdade
- IronSAP - SAP security scanner - Prasanna K
- SSL Security Checker - scanner for SSL configuration weaknesses - Manish Saindane
- OWASP Skanda - SSRF exploitation tool - Jayesh Singh Chauhan
- CSRF PoC Generator - CSRF vulnerability exploit generator - Jayesh Singh Chauhan
- HAWAS - automatically detect and decode encoded strings or hashes in websites - Lavakumar Kuppan

www.ironwasp.org

About

Graphical tool for testing web application security.

ironwasp.org

security application-security hacking-tool security-scanner security-tools security-testing

Custom properties

Report repository

Releases 1

v0.9.8.6 Latest

Packages

No packages published

Languages

C# 86.5%
Python 12.5%
Other 1.0%