This study will put spot light on web applications testing methods and tools from the security aspects, and we will explain the details about using these tools, after we have explained the most famous weak points and vulnerabilities that web applications suffer from. At the end we will evaluate these tools. By this study we try to help developers to choose the most suitable method and tool for their needs.