Categories
Welcome Center
Education & Development
Discussions
Certification Preparation
Recent Posts
Groups
Free Resources
Ebooks
Free Workshops
Trending Certifications Infographic
Infosec Training
IT & Security Training
Live Boot Camps
Security Awareness Training
About Infosec Institute
Home
Discussions
IT & Cybersecurity
Favorite tools for web app penetration testing
tedjames
Hey, new forum! What are your favorite tools for web app penetration testing? If I was limited to one tool, I'd choose Burp.
Find more posts tagged with
Save $250 on 2025 certification boot camps from Infosec!
Book now with code EOY2025
Button
Comments
[Deleted User]
Depends on what i'm trying to do. For manipulating requests, Burp For SQL Injection sqlmap For deserialization ysoserial
tedjames
Thanks for the tip! I'll check out ysoserial.
Infosec_Sam
OpenVAS
is something you might want to check out as well! I've used it a couple of times on small-scope projects and it had most of the tools I was looking for.
SteveLavoie
you could try Nikto too
Severine
Metasploit is also a good option for web application penetration testing.
Quick Links
All Categories
Recent Posts
Activity
Unanswered
Groups
Best Of
INFOSEC Boot Camps
$250
OFF
Use code
EOY2025
to receive $250 off your 2025 certification boot camp!
BROWSE BOOT CAMPS
![Photo of [Deleted User]](https://us.v-cdn.net/6030959/uploads/defaultavatar/nE1RZK93BLG3K.jpg)
