diff --git a/guide/english/security/index.md b/guide/english/security/index.md
index 0b1241040c..4a81946176 100644
--- a/guide/english/security/index.md
+++ b/guide/english/security/index.md
@@ -19,3 +19,18 @@ Security researchers use a wide variety of methods and tools, which are discusse
 
 Although hacking is a key threat to secure applications, it is not the only one.  Application developers need to balance user experience with security features.  Some cyber breches are self-infliced due to complex or hard to understadn security configurations.  What security features should be set by default?  What features should be seemless and which should require explict user consent? 
 
+### Website Security Scanners
+
+#### Qualys Website Scanner
+It checks your website for server & application vulnerabilities, hidden malware, and SSL security configuration errors.
+1. Scan web servers & apps on the Internet or in your network.
+2. Detect vulnerabilities and review ways to fix them.
+3. Find malware uploaded by malicious users.
+4. Verify that SSL is properly configured and working.
+
+Link: https://www.qualys.com/forms/freescan/website-scan/
+
+#### Pentest-Tools 
+It is a security company built by people with passion for cyber security. It is very effective in detecting Cross-Site Scripting (XSS) which is one of the most well known web application vulnerabilities. 
+
+Link: https://pentest-tools.com/website-vulnerability-scanning/xss-scanner-online