Arachni

Arachni is an open-source web application security scanner framework designed to automatically detect vulnerabilities including SQL injection, cross-site scripting (XSS), CSRF, code injection, and other OWASP-identified threats through comprehensive active and passive security testing. The tool provides modular, high-performance scanning capabilities with both command-line and web-based interfaces, enabling penetration testers and administrators to evaluate web application security through automated vulnerability detection, intelligent false-positive identification, and detailed security reporting.