This post list web application security testing tools.
List of Web Application Security Scanners
List web application security testing tools:
- Acunetix WVS
- N-Stalker Web Application Security Scanner
- OWASP Zap Baseline Scan
- Web Site Security Audit (WSSA)
- Syhunt Hybrid
- Secunia PSI
List of Web Application Security Scanner
It is featured in CISSP exam.
N-Stalker Web Application Security Scanner
OWASP Zap Baseline Scan
ZAP Baseline Scan is a Python script that scans a website and reports the results.
You may also have a look at OWASP Application Security Verification Standard (ASVS).