WS-Attacker is a modular framework for web services penetration testing. It is a free and easy to use software solution, which provides an all-in-one security checking interface with only a few clicks. Currently the following attacks are implemented: - Automatic XML Signature Wrapping attack against Web Services - XML-Denial-of-Service Techniques against Web Services - SOAPAction Spoofing and WS-Addressing Spoofing Further Attacks in Development (even apart from Web Services) http://sourceforge.net/projects/ws-attacker/