[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Bug#489282: ITP: ratproxy -- web application security audit tool

Package: wnpp
Severity: wishlist
Owner: Iustin Pop <iusty@k1024.org>

* Package name    : ratproxy
  Version         : 1.51
  Upstream Author : Michal Zalewski <lcamtuf@google.com>
* URL             : http://code.google.com/p/ratproxy/
* License         : Apache-2.0
  Programming Lang: C
  Description     : web application security audit tool

A semi-automated, largely passive web application security audit tool,
ratproxy is optimized for an accurate and sensitive detection, and
automatic annotation, of potential problems and security-relevant design
patterns based on the observation of existing, user-initiated traffic in
complex web 2.0 environments.

It detects and prioritizes broad classes of security problems, such as
dynamic cross-site trust model considerations, script inclusion issues,
content serving problems, insufficient XSRF and XSS defenses, and much

-- System Information:
Debian Release: lenny/sid
  APT prefers unstable
  APT policy: (500, 'unstable'), (500, 'testing'), (500, 'stable'), (1, 'experimental')
Architecture: amd64 (x86_64)

Kernel: Linux (SMP w/2 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash

Reply to: