
Description: w3af is an open source web application security scanner. It helps developers and security researchers identify and exploit vulnerabilities in web apps. w3af is designed to find XSS, SQLi, RCE, and other common web app vulnerabilities.
Type: Open Source Test Automation Framework
Founded: 2011
Primary Use: Mobile app testing automation
Supported Platforms: iOS, Android, Windows

Description: Invicti (Netsparker) is a web application security scanner that helps identify vulnerabilities in web apps and APIs. It can automatically crawl web applications, analyze the code, and detect SQL injection, cross-site scripting, and other vulnerabilities. Invicti is easy to use and provides detailed vulnerability reports.
Type: Cloud-based Test Automation Platform
Founded: 2015
Primary Use: Web, mobile, and API testing
Supported Platforms: Web, iOS, Android, API