Features

Main scan database in CSV format for easy updates
Determines "OK" vs "NOT FOUND" responses for each server, if possible
Determines CGI directories for each server, if possible
Switch HTTP versions as needed so that the server understands requests properly
SSL Support (Unix with OpenSSL or maybe Windows with ActiveState's Perl/NetSSL)
Output to file in plain text, HTML or CSV
Generic and "server type" specific checks
Plugin support (standard PERL)
Checks for outdated server software
***** support (with authentication)
Host authentication (Basic and NTLM)
Watches for "bogus" OK responses
Attempts to perform educated guesses for Authentication realms
Captures/prints any Cookies received
Mutate mode to "go fishing" on web servers for odd items
Builds Mutate checks based on robots.txt entries (if present)
Scan multiple ports on a target to find web servers (can integrate nmap for speed, if available)
Multiple IDS evasion techniques
Users can add their a custom scan database
Supports automatic code/check updates (with web access)
Multiple host/port scanning (scan list files)