OWASPなWebセキュリティツール(SecuDiary)
2つ紹介されています。片方はプロキシタイプ、一つはAjax対応みたいですね。
Pantera uses an improved version of SpikeProxy to provide a powerful web application analysis engine.
Sprajax is an open source black box security scanner used to assess the security of AJAX-enabled applications. By detecting the specific AJAX frameworks in use, Sprajax is able to better formulate test requests and identify potential vulnerabilities.