WebScarab : WebScarab is a framework for analysing applications that communicate using the HTTP and HTTPS protocols.
SPOFCheck : A CLI tool for detecting frontend SPOF, mainly blocking scripts and CSS
Wapiti : Wapiti allows you to audit the security of your web applications.
It performs "black-box" scans, i.e. it does not study the source code of the applica...
boomerang : boomerang is a piece of javascript that you add to your web pages, where it measures the performance of your website from your end user's point of vie...
mitmproxy : mitmproxy is your swiss-army knife for debugging, testing, privacy measurements, and penetration testing. It can be used to intercept, inspect, modify...
webhint is a linting tool that will help you with your site's accessibility, speed, security and more, by checking your code for best practices and common errors. Use the online scanner or the CLI to start checking your site for errors.