Slashdot Mirror

← Back to Stories (view on slashdot.org)

Google Gives Away Web App Security Tool

Posted by timothy on Thursday July 3, 2008 @10:22AM from the to-whom-it-may-concern dept.

CWmike writes "Google has released for free one of its internal tools used for testing the security of Web-based applications. Ratproxy, released under an Apache 2.0 software license, looks for a variety of coding problems in Web applications. A 2006 survey by the Web Application Security Consortium found that 85.57 percent of 31,373 sites were vulnerable to cross-site scripting attacks, 26.38 percent were vulnerable to SQL injection and 15.70 percent had other faults that could lead to data loss."

3 of 30 comments (clear)

Min score:

Reason:

Sort:

Re:Works great by VGPowerlord · 2008-07-03 11:24 · Score: 4, Funny

If you run it with -xXx, it'll find any pornographic images on your site.

--
GLaDOS for President 2016! "Well here we are again. It's always such a pleasure." -- GLaDOS, 2011
Re:Works great by Ynot_82 · 2008-07-03 11:33 · Score: 3, Funny

and 4x's gives you free beer
Oooh, goody goody... by T3Tech · 2008-07-03 13:09 · Score: 5, Funny

a new toy to play with.

In other news, Viacom has petitioned the court for Google's logs of users who downloaded their ratproxy tool after it was used to reveal vulnerabilities on certain Viacom owned web sites.

--
Of course I didn't RTFA... why would I do that? You really are new here aren't you? Don't let my UID fool you.