w3af is a Web Application Attack and Audit Framework. The project's goal is to create a framework to find and exploit web application vulnerabilities that is easy to use and extend. To read our short and long term objectives. w3af is much more than a piece of software, w3af is a community that breathes Web Application Security.
Change Log:
* Considerably increased performance by implementing gzip encoding
* Enhanced embedded bug report system using Trac's XMLRPC
* Fixed hundreds of bugs * Fixed critical bug in auto-update feature
* Enhanced integration with other tools (bug fixed and added more info to the file)
Download Here
Get Video Tutorial and Help to Use w3af here