Burp Suite versus Xenotics?
OSWASP has a free Anti-XSS tool called Xenotics. I like the 4800+ payloads and their use of the term "Target Reconnaissance." It's pretty scary if you imagine a hacker using that against your site. Other tools of interest are Burp Suite.
Any experience with either?
I hope for a tool that is easy for our team to quickly come up to speed and be able to use at least the majority of advanced features.
Suggestions about which of the two is better? Also, feel free to suggest one you have had personal experience with.
ALSO, if we chose to use the .NET Anti-XSS Library from Microsoft, how might that decision influence our choice of test tool?