OWASP ZAP(ZED ATTACK PROXY)
- Automatically find vulnerabilities in web applications.
- Free and easy to use.
- It can also be used for manual testing.
This is the welcome page.
Options Page
Scan Policy Setting Page.
Attack this target URL http://10.0.0.24/mutillidae/.
Then you can analyze and test the result.