Google released a great new web security tool on Wednesday (2nd) which aims to help web developers tighten up the security of their web apps. It goes by the name RatProxy and as its name suggests it works by acting as a proxy between the browser and the site your viewing. In that position it can monitor all the communications between them and flag any potential concerns.
Its especially useful for discovering cross-site scripting vulnerabilities and its being used actively at Google for their own systems. We plan on using it here at Essential on all our existing and future web apps to add another tool to the security arsenal.
Other security tools we’d recommend are:
- Nikto - Web server security scanner.
- ProxMon & WebScarab - Python proxy analyser for pen-testing web servers and the proxy itself.
- Nessus - A hugely comprehensive network security analysis program.
one comment so far...
[...] New Security Tool by Google Talk about this: [...]
leave a reply