Testing Web Application Security Using Google's Ratproxy |
|
| BugsAlert Home > Testing Web Application Security Using Google's Ratproxy | |
|
LinuxSecurity.com: To help developers audit Web application security, Google has released an open source tool called ratproxy. It is a non-disruptive tool designed for Web 2.0 and AJAX applications that produces an easy-to-read report of potential exploits. Ratproxy is a local program designed to sit between your Web browser and the application you want to test. It logs outgoing requests and responses from the application, and can generate its own modified transactions to determine how an application responds to common attacks. The list of low-level tests it runs is extensive, and includes: Have you testing out ratproxy yet? If not this article will show you how to install and use it for your self. Original Source: http://www.linuxsecurity.com/content/view/140595?rdf Learn more about Testing Web Application Security Using Google's Ratproxy |
|
| Tags: testing web application security google ratproxy | |
Related Items |
|
|
PHP GENERATE_SEED() Weak Random Number Seed Vulnerability
|
|
|
FrSIRT - ClipShare "chid" Parameter Remote SQL Injection Vulnerability
|
|
|
CVE-2008-4279 (workstation, player, server, esx)
|
|
|
Trojan-Downloader.JS.Agent.bxr
|
|
|
Uninstalling TM Internet Security
|
|
|
TUTOS Command Execution and Information Exposure
|
|
|
CVE-2008-5703 (gpsdrive)
|
|
