The General Features of Web Application Scanners

The current information is based on the results of the *2011/2012/2014/2016* benchmarks (excpet for entries marked as updated or new )

Last updated: 18/09/2016
Sorted in a descending order according to the scanner's name.
Hint: hover over the marks and titles to get additional information on the various features.
Glossary
Unified List   Commercial Scanners   Free / Open Source Scanners


#
LogoVulnerability ScannerGUIConfigUsageStabilityPerformanceReportScanLogPauseSession
1
Acunetix WVS Free EditionVery SimpleVery SimpleStableFast
2
aidSQLSimpleComplexUnstableFast
3
AndiparosVery SimpleVery SimpleStableFast
4
arachniSimpleVery SimpleStableFast
5
crawlfishSimpleSimpleUnstableFast
6
Damn Small SQLi Scanner (DSSS)Very SimpleVery SimpleStableVery Fast
7
GamjaVery SimpleSimpleVery StableFast
8
GrabberComplexComplexStableSlow
9
Grendel ScanSimpleSimpleStableSlow
10
IronWASPVery SimpleVery SimpleStableFast
#
LogoVulnerability ScannerGUIConfigUsageStabilityPerformanceReportScanLogPauseSession
11
iScanVery SimpleSimpleUnstableFast
12
JSky Free EditionSimpleSimpleStableFast
13
LoverBoyVery SimpleComplexFragileSlow
14
Mini MySqlat0rSimpleSimpleVery StableVery Fast
15
Netsparker Community EditionVery SimpleVery SimpleStableVery Fast
16
N-Stalker 2009 Free EditionVery SimpleVery SimpleStableFast
17
N-Stalker 2012 Free EditionVery SimpleVery SimpleUnstableFast
18
OedipusSimpleComplexStableFast
19
openAcunetixSimpleSimpleStableFast
20
Paros ProxyVery SimpleVery SimpleUnstableSlow
#
LogoVulnerability ScannerGUIConfigUsageStabilityPerformanceReportScanLogPauseSession
21
PowerFuzzerVery SimpleVery SimpleStableFast
22
PriamosVery SimpleSimpleStableSlow
23
ProxyStrikeVery SimpleVery SimpleVery StableVery Fast
24
safe3wvs (limited free edition)Very SimpleVery SimpleStableFast
25
Sandcat Free EditionComplexSimpleUnstableFast
26
ScrawlrVery SimpleVery SimpleStableFast
27
ScreamingCSSSimpleSimpleStableFast
28
SecubatSimpleSimpleUnstableFast
29
SkipFishSimpleSimpleStableVery Fast
30
SQID (SQL Injection Digger)SimpleSimpleStableFast
#
LogoVulnerability ScannerGUIConfigUsageStabilityPerformanceReportScanLogPauseSession
31
SQLiXComplexVery ComplexFragileFast
32
sqlmapComplexSimpleStableSlow
33
Syhunt Mini (Sandcat Mini)SimpleSimpleStableSlow
34
Uber Web Security ScannerSimpleSimpleUnstableSlow
35
VegaVery SimpleVery SimpleStableVery Fast
36
VulnDetectorComplexSimpleStableFast
37
W3AFComplexComplexUnstableFast
38
WapitiComplexComplexFragileFast
39
WATOBOVery SimpleVery SimpleUnstableFast
40
Web Injection Scanner (WIS)Very SimpleSimpleUnstableFast
#
LogoVulnerability ScannerGUIConfigUsageStabilityPerformanceReportScanLogPauseSession
41
WebCruiser Free EditionVery SimpleSimpleStableFast
42
WebScarabVery SimpleVery SimpleStableFast
43
WebSecurify (Opensource Version)Very SimpleVery SimpleVery StableFast
44
WSToolComplexComplexUnstableFast
45
XcobraSimpleSimpleStableFast
46
XSSerVery SimpleSimpleStableFast
47
XSSploitVery SimpleVery SimpleStableFast
48
XSSSSimpleComplexFragileFast
49
ZAPVery SimpleVery SimpleVery StableFast


Statistics
#
GUIReportScanLogPause
Scanners:34272317



Glossary
AliasGeneral FeatureDescriptionReferences
GUIGUIThe Graphical User Interface of the Software1
ConfigurationConfigurationThe Type Of Configuration Method1
UsabilityUsabilityEase of Use and User Experience1, 2
StabilityStabilityHow Stable is the Software1
PerformancePerformanceHow Fast is The Testing Process (Relative)1



Copyright © 2010-2015 by Shay Chen. All rights reserved.
Click here to learn how this information may be published or reused.