I’ve been using WebScarab for a while now, and thought I’d share it with those who aren’t familiar with it. It’s a web security analysis application written in Java. It has numerous included plug-ins with the standard install, including a spider, parameter fuzzer, session analyzer, HTTP/HTTPS interception/mangling, and much more. OWASP once again proves their skill in creating a extremely useful tool. Check it out!