Acunetix
Web vulnerability scanner for automated security testing of websites and web apps
Open-Source Projects
Discover top open-source software, updated regularly with real-world adoption signals.
Discover top open-source software, updated regularly with real-world adoption signals.
Intelligent Ruby scanner for dynamic web application security
Arachni is a modular, high‑performance Ruby framework that automatically discovers security issues in modern web applications, featuring an integrated browser for JavaScript/AJAX analysis and extensive authentication support.
Arachni provides a feature‑full, modular framework written in Ruby for automated security testing of web applications. It learns from the target’s behavior during scans, performing meta‑analysis to reduce false positives and adapt to dynamic content.
The scanner includes a real‑browser environment that captures DOM changes, JavaScript execution, and AJAX traffic, enabling detection of client‑side vulnerabilities. Users can run scans via a simple command‑line tool, a collaborative web interface, or embed the library in custom Ruby scripts. Its plugin architecture allows developers to create bespoke checks, while adaptive concurrency automatically balances load based on server health. Arachni supports a wide range of authentication methods, proxy configurations, and SSL options, making it suitable for complex enterprise environments.
Designed for penetration testers, security engineers, and developers who need deep, automated analysis of modern web applications, Arachni also serves researchers building custom scanning tools or data‑mining pipelines.
When teams consider Arachni, these hosted platforms usually appear on the same shortlist.
Looking for a hosted option? These are the services engineering teams benchmark against before choosing open source.
Comprehensive corporate web portal assessment
Generates a detailed vulnerability report with reduced false positives across dynamic pages.
CI/CD integration for staging builds
Automatically scans each build, catching XSS, SQLi, and other issues before release.
Custom authentication plugin development
Enables tailored scans for internal applications using proprietary login mechanisms.
Web data‑mining and scraping
Extracts structured information from complex sites using custom components.
Arachni works with Ruby 2.5 and newer; consult the documentation for exact version compatibility.
Yes, you can disable the browser cluster for faster, non‑JavaScript scans, though client‑side issues may be missed.
Plugins are Ruby classes placed in the `plugins/` directory; the framework loads them automatically, and developers can follow the provided API guidelines.
Each browser worker runs a full browser instance, so memory and CPU usage increase with the pool size; adjust the pool based on available hardware.
Project at a glance
StableLast synced 4 days ago
