Create a tool that allows an authorized simulated cyberattack on a Website, performed to evaluate the security of the corresponding website to find if the website is vulnerable to OWASP top 10, such as Injection, Broken Authentication, Cross-Site Scripting, and etc.
1. Currently we use OWASP ZAP for automated penetration testing which often gives false positives and irrelevant output.
2. The service would be helpful for identifying the vulnerabilities and promote our WAF solution.