WebVulScan - Web Application Vulnerability Scanner
WebVulScan is a web application vulnerability scanner. It is a web application itself written in PHP and can be used to test remote, or local, web applications for security vulnerabilities. As a scan is running, details of the scan are dynamically updated to the user. These details include the status of the scan, the number of URLs found on the web application, the number of vulnerabilities found and details of the vulnerabilities found.
It checks for Reflected Cross-Site Scripting, SQL Injection, SSL Certificate not Trusted, Unvalidated Redirects, Potentially Insecure Direct Object References and lot more.