Google released Ratproxy - a free Web application security scanner

Forum

Google released Ratproxy - a free Web application security scanner
Juha-Matti Laurio	Thursday, July 3, 2008 3 years ago • 922 views
"Google has released for free one of its internal tools used for testing the security of Web-based applications. Ratproxy, released [as beta] under an Apache 2.0 software license, looks for a variety of coding problems in Web applications, such as errors that could allow a cross-site scripting attack or cause caching problems. ....." pcworld.com/article/147917/goo ... And Google Online Security Blog's entry: googleonlinesecurity.blogspot. ... The tool: code.google.com/p/ratproxy
Roger Browne	3 years ago #
The documentation is here: code.google.com/p/ratproxy/wik ... One of the things it says is: "Key low-level check groups implemented by ratproxy [include] subtle mistakes such as serving GIF files as image/jpeg" Yet Philipp found YouTube serving animated GIFs as JPGs here: blogoscoped.com/archive/2008-0 ... So maybe YouTube hasn't started using this tool yet.
Juha-Matti Laurio	3 years ago #
Tnx for additional links
This thread is locked as it's old... but you can create a new thread in the forum.

Blog | Forum more >> Archive | Feed | Google's blogs | About

This site unofficially covers Google™ and more with some rights reserved. Join our forum!