header bg

Question:

The tool that is NOT normally used in web application security testing is which of the following?

A Nmap
Explaination