YASW (Yet Another Scan Wizard)

YASW: Free Open Source Web Vulnerability Scanner

YASW is a free, open source web vulnerability scanner for Windows. It allows scanning websites for vulnerabilities like XSS, SQLi, and more. YASW has an easy to use GUI and built-in reporting.

What is YASW (Yet Another Scan Wizard)?

YASW (Yet Another Scan Wizard) is a free and open source web application vulnerability scanner designed for Windows. It provides an intuitive graphical user interface to easily initiate scans and view detailed reports.

With YASW, you can scan websites, web services, and web applications for vulnerabilities like cross-site scripting (XSS), SQL injection, command injection, path traversal, and more. It supports automatic crawl and recursion of links to identify all pages and endpoints associated with a target.

Some key features of YASW include:

• Easy to use graphical user interface
• Scanning wizard to guide you through configuration
• Authentication methods like forms, HTTP basic/digest
• Custom headers and request data injection
• Automatic and manual crawling options
• Passive and aggressive scan modes
• Real-time vulnerability reporting
• Comprehensive reports in various formats

YASW is frequently updated with new vulnerability checks based on the latest threats. Its scanning engine identifies vulnerabilities by injecting malicious patterns and analyzing application responses. As an open source tool, YASW provides transparency into how its scans are performed.

YASW (Yet Another Scan Wizard) Features

Official Links