Use Website Security Tools

Once you have implemented all the recommendations in your website, the next thing you have to do is test your website security.

Fortunately there are a lot of website security tools available to test your website, but the 4 mentioned below are industry renowned-

1. Netsparker - Good for testing SQL injection and XSS
2. OpenVAS - Claims to be the most advanced open source security scanner. Good for testing known vulnerabilities, currently scans over 25,000. This one is difficult to setup though
3. SecurityHeaders.io - A tool to quickly report which security headers a domain has enabled and if correctly configured.
4. Xenotix XSS Exploit Framework - A tool that includes a huge selection of XSS attack examples. Simply run to know whether your site's inputs are vulnerable in browsers such as Chrome, Firefox and IE.