Google
Google is releasing its RatProxy testing tool
R E L A T E D   C O N T E N T
Similar articles
KnowledgeBANK
News centre
More from vnunet.com
ADVERTISEMENT

Google open sources RatProxy security tool

Web sniffer made available to all

Shaun Nichols in San Francisco, vnunet.com 03 Jul 2008
ADVERTISEMENT

Google has released the source code for its internal RatProxy security tool.

The software analyses web pages for potential security risks and reports back to the site administrator.

RatProxy can pick up cross-site scripting flaws and incomplete cross-site defence mechanisms, as well as potential data leak sources and risky code that retrieves data from outside domains.

Google hopes that developers will put the tool to use when coding new web-based services that rely on multiple sites and outside sources for data.

Michal Zalewski, a security engineer at Google, warned, however, that the tool should not be considered a substitute for a thorough analysis by a security professional.

"We feel it will be a valuable contribution to the information security community, helping to advance the understanding of security challenges associated with contemporary web technologies," he said.

"We believe that responsible security research brings a net overall benefit to the safety of the web as a whole, and have released this tool explicitly to support that kind of research."

Users can download RatProxy from the Google Code site. The tool works on Windows, Linux, FreeBSD and MacOS X operating systems.

See also:

Spam
Spammers exploit Google Docs
Cyber-crooks turn to mainstream hosted services  03 Jun 2008
Linux
Open source security improving rapidly
Two-year quality analysis studied 250 popular applications  20 May 2008
Google
Google security tool goes beyond the network
Browser monitoring extended to roaming users and off-site workers  09 May 2008
Hacking
Sloppy developers blamed for SQL attacks
Security not being built-in to applications, warns Fortify  01 May 2008

All Enterprise Security Technology
Tags: Google, Security

Like this story? Spread the news by clicking below:

Post this to Delicious del.icio.us    Post this to Digg Digg this    Post this to reddit reddit!

Permalink for this story

M A R K E T P L A C E
Sponsored links
F E A T U R E D   J O B S
Software Test Engineer
| JAM Recruitment
Software Test Engineer 6 Weeks Contract £ 35 per hour Wiltshire We have an urgent need for a Software Test Engineer. Main Duties: ·Sound understanding of full software lifecycle ·Solid experience in requirements analysis ·Requirements ... more >
Software Test Engineer
| JAM Recruitment
Software Test Engineer 3 Months Contract £35 per hour Wiltshire We have an urgent need for a Software Test Engineer. Main Duties: ·Sound understanding of full software lifecycle ·Solid experience in requirements analysis ·Requirements based ... more >
Business Analyst
| Aston Carter
Major Investment Bank requires a Business Analyst to work within reference data IT. The reference data IT function is responsible for the three internal systems. One of the systems is a strategic repository for Client ... more >
Occupational Health Opportunities
| JAM Recruitment
Job Ref: CY - 27021979 Package: £25 – 42,000 +Bens Location: YORKSHIRE Job type: Occupational Health Position type: Permanent Hours: Full time Contact name: Mr Colin Youle Contact Company: JAM HUMAN RESOURCES Are you a ... more >
More job opportunities
Accountancy Age
Active Home
Best Practice
Computeractive
Computing
Computing Business
CRN
Financial Director
Infomatics
Information World Review
IT Week
Management Consultancy
Network IT Week
Personal Computer World
PC Magazine
VNU Web seminars
vnunet.com
Webactive
What PC?
Useful links: About vnu network | Privacy policy | Terms & conditions
Access keys | Top of page | Feedback
VNU Business Publications
© 1995-2008 All rights reserved
VNU Business Publications Ltd., 32-34 Broadwick Street, London, W1A 2HG, is a company registered in England and Wales with company number 01513633
part of part of vnu.net europe