Topic: Web Site Security Test Tools !!!!

Top 75 Security Tools
Listing of 'top 75' network security tools from survey by Insecure.org. (Includes various types of security tools, not just for testing.)
InternetScanner
Tool from Internet Security Systems, provides automated vulnerability assessment for measuring online security risks. Performs scheduled and selective probes of network services, servers, desktops, operating systems, routers, firewalls, etc. to uncover and report systems vulnerabilities that might be open to attack. Provides flexible risk management reports, prepares remediation advice, trend analyses and comprehensive data sets to support policy enforcement. Similar managed service also available.

CERIAS Security Archive
Purdue University's 'Center for Education and Research in Information Assurance and Security' site; 'hotlist' section includes extensive collection of links, organized by subject, to hundreds of security information resources and tools, intrusion detection resources, electronic law, publications, etc. Also includes an FTP site with a large collection of (mostly older) security-related utilities, scanners, intrusion detection tools, etc.

CyberCop ASaP
Managed vulnerability assessment service from McAfee/Network Associates. Remotely evaluates security of network perimeter, DMZ and externally visible assets.

Foundstone
Vulnerability management software tools from McAfee/Network Associates can provide comprehensive enterprise vulnerability assessments, remediation information, etc. Available as a hardware appliance, software product, or managed service.NetIQ Security Analyzer
Multi-platform vulnerability scanning and assessment product. Systems are analyzed on demand or at scheduled intervals. Automatic update service allows updating with latest security tests. Includes a Software Developer's Kit to allow custom security test additions. For Windows/Solaris/Linux.

bv-Control for Internet Security
Secutiry scanning tool from BindView, includes capabilities for checking and remediation of security problems of servers, workstations, routers, hubs, printers, and any other devices with an IP address on a network. Scans any device on network regardless of platform.

NMap Network Mapper
Free open source utility for network exploration or security auditing; designed to rapidly scan large networks or single hosts. Uses raw IP packets in novel ways to determine what hosts are available on the network, what services (ports) they are offering, what operating system (and OS version) they are running, what type of packet filters/firewalls are in use, and many other characteristics. Runs on most flavors of UNIX as well as Windows.

SAINT
Security Administrator's Integrated Network Tool - Security testing tool from SAINT Corporation. An updated and enhanced version of the SATAN network security testing tool. Updated regularly; CVE compatible. Includes DoS testing, reports specify severity levels of problems. Single machine or full network scans. Also available is 'WebSAINT' self-guided scanning service, and SAINTbox scanner appliance. Runs on many UNIX flavors.

Secure-Me
Automated security test scanning service from Broadbandreports.com for individual machines. Port scans, denial-of-service checks, 45 common web server vulnerability checks, web server requests-per-second benchmark, and a wide variety of other tests. Limited free or full licensed versions available.