radare : Radare is a portable reversing framework that can...
Disassemble (and assemble for) many different architectures
Debug with local native and remote de...
Wapiti : Wapiti allows you to audit the security of your web applications.
It performs "black-box" scans, i.e. it does not study the source code of the applica...
WebScarab : WebScarab is a framework for analysing applications that communicate using the HTTP and HTTPS protocols.
domsnitch : A passive reconnaissance tool inside the DOM (experimental)
XSS Filter Evasion Cheat Sheet - OWASP : This article is focused on providing application security testing professionals with a guide to assist in Cross Site Scripting testing.
