2008 – DVWA – Damn Vulnerable Web Application

Damn Vulnerable Web App (DVWA) is a PHP/MySQL web application that is damn vulnerable. Its main goals are to be an aid for security professionals to test their skills and tools in a legal environment, help web developers better understand the processes of securing web applications and aid teachers/students to teach/learn web application security in a class room environment.

2010 – WebWordCount – Website Word Counter

WebWordCount is a free online tool aimed at professional translators and proof readers who have a need to translate or proof read websites. Professional translators charge per word and it can be difficult to estimate the amount of words that are on a particular website. For that reason, WebWordCount counts all the words on a given website for you, allowing you to give a better price estimation to your clients.

2011 – WPScan – WordPress Security Scanner

WPScan is a black box WordPress vulnerability scanner.

2012 – DevBug – PHP Static Code Analysis

DevBug is a basic PHP Static Code Analysis (SCA) tool written mostly in JavaScript. The idea behind DevBug is to make basic PHP Static Code Analysis accessible online, to raise security awareness and to integrate SCA into the development process. DevBug could be used to quickly test a page of PHP that you think may have some potential vulnerabilities, to run across a piece of code you have found on Google that you are unsure of or to directly write your own code in.