Simon Willison’s Weblog

3rd July 2008 - Link Blog

ratproxy. “A semi-automated, largely passive web application security audit tool”—watches you browse and highlights potential XSS, CSRF and other vulnerabilities in your application. Created by Michal Zalewski at Google.

Posted 3rd July 2008 at 2:35 pm

Recent articles

Perhaps not Boring Technology after all - 9th March 2026
Can coding agents relicense open source through a “clean room” implementation of code? - 5th March 2026
Something is afoot in the land of Qwen - 4th March 2026

This is a link post by Simon Willison, posted on 3rd July 2008.

csrf 53 google 399 michal-zalewski 3 proxies 19 ratproxy 1 security 578 testing 92 xss 60

Monthly briefing

Sponsor me for $10/month and get a curated email digest of the month's most important LLM developments.

Pay me to send you less!

Sponsor & subscribe