"Ratproxy is a semi-automated, largely passive web application security audit tool, optimized for an accurate and sensitive detection, and automatic annotation, of potential problems and security-relevant design patterns based on the observation of existing, user-initiated traffic in complex web 2.0 environments."
Download ratproxy from the following Link
OR use the following commands:
$> wget http://ratproxy.googlecode.com/files/ratproxy-1.56.tar.gz
$> tar xvf ratproxy-1.56.tar.gz
$> make
On Firefox go to |Tools|Options|Advanced|Network|settings choose manual proxy (rat address). and execute ratproxy with the following command:
$> ./ratproxy -w logfile -d domaintoscan -rlextifscpjm
To get a report in html file use:
$> -./ratproxy-report.sh logfile > report.html
Jacky Altal
About Me
Jack`s Favorite Blogs
Get Into Jack`s Box
Posts
Comments
No comments:
Post a Comment