ratproxy - another web application security tool

ratproxy - [BETA] a semi-automated web application security tool, which allow you to analyse problems such as XSS, insufficient CSRF defenses, caching issues, and much more while browsing the site.

Step 1: Run the tool and only capture domain "arlinz.blogspot.com"
$ ./ratproxy -v arlinz.dir -w arlinz.file -d arlinz.blogspot.com -lextifscgjm

ratproxy version 1.51-beta by
[*] Proxy configured successfully. Have fun, and please do not be evil.
[+] Accepting connections on port 8080/tcp (local only)...

Step 2: Point your browse proxy to "localhost:8080" and start browsing
















Step 3: Generate the report
$ ./ratproxy-report.sh arlinz.file > report.htm

Step 4: Review the report

















Some report from other site: