WyseLabs Internet Marketing Forum :: Start Sharing

A Dedicated Room for Testing, Experimenting, Listing & Discussing Internet Marketing Innovation

This forum consists of only people that work for TechWyse and contribute to the WyseLabs community. We invite all of you to read many of the helpful things that we find in our daily lives! That is why we have built this section after all!
Register Now

DOM Snitch Chorme extension for identifying insecure code

There are always new and exciting sites online. Think you found one that is helpful? Share it with the group!

Moderator: Moderators

Post a reply

DOM Snitch Chorme extension for identifying insecure code

Postby sathish.k » Fri Jun 24, 2011 5:57 am

DOM Snitch is an experimental Chrome extension that enables non-security testers identify common bad practices when producing client-side code and security testers gain better understanding of the transformations that occur within the DOM.

DOM Snitch works by injecting a series of interceptors, also referred to as “hooks”, that allow the tool to listen when a page interacts with key (and sometimes dangerous) browser infrastructure such as window.postMessage, window.eval, or document.write (a complete list of the hooks is available ). Once a hook has been triggered, DOM Snitch gathers and stores various debug information from the execution stack (details are available ). If configured to modify data on the fly, DOM Snitch will wait for the tester to modify the used data as needed before letting normal execution to proceed.
Thanks & Regards,
Sathish
sathish.k
 
Posts: 111
Joined: Fri Aug 08, 2008 1:18 am
Top
Post a reply

Return to Online Ideas, Innovation & Cool Sites

Who is online

Users browsing this forum: No registered users and 8 guests

Powered by phpBB® Forum Software © phpBB Group