Welcome to w3af’s documentation

This document is the user’s guide for the Web Application Attack and Audit Framework (w3af), its goal is to provide a basic overview of what the framework is, how it works and what you can do with it.

w3af is a complete environment for auditing and exploiting Web applications. This environment provides a solid platform for web vulnerability assessments and penetration tests.

Github repository Github repository
w3af homepage w3af homepage
IRC channel IRC channel
Users mailing list Users mailing list
Developers mailing list Developers mailing list
Twitter feed Twitter feed