illurity-logo
Log in

Site menu:

Categories

Tags

Site search

August 2018
M T W T F S S
« Dec    
 12345
6789101112
13141516171819
20212223242526
2728293031  

Links:

Archives

Google Vulnerability Assessment Service?

As a follow-up to this post, it’s worth noting that Google’s security team is now working on a blackbox fuzzing tool they call Lemon:

Our vulnerability testing tool enumerates a web application’s URLs and corresponding input parameters. It then iteratively supplies fault strings designed to expose XSS and other vulnerabilities to each input, and analyzes the resulting responses for evidence of such vulnerabilities.

Although their blog states that they have no plans to market it as a Vulnerability Assessment (VA) tool, how long could they resist sharing the fruits of their superiority with the rest the world? Qualys, Watchfire, Acunetix and all other PCI Approved Scanning Vendors beware.

Share: These icons link to social bookmarking sites where readers can share and discover new web pages.
  • Twitter
  • LinkedIn
  • Facebook
  • email
  • Google Bookmarks
  • del.icio.us
  • StumbleUpon
  • Reddit

You must be logged in to post a comment.