Watcher: Web security testing tool and passive vulnerability scanner
Watcher is a Web-security testing tool that passively identifies vulnerabilities and hot-spots in Web-applications. Being passive means it's safe for production use.
For more info and download check: http://websecuritytool.codeplex.com
See also: Casaba Releases Watcher 1.3.0 with Added SDL Integration