As @andrew_brown pointed out OWASP and Kali have a lot of amazing tools. I would recommend every company to use ZAP from OWASP as a good starting point. It has a big list of automated tests which of course need you to verify afterwards manually or using other tools but it does warn on many things.
We're a place where coders share, stay up-to-date and grow their careers.
We strive for transparency and don't collect excess data.