Google Launches DOM Snitch: An Open Source Tool for Web Security

Google today released an open-source tool called DOM Snitch that tries to flag Web site software that would be dangerous to run in a browser. The software is an experimental Chrome extension that examines how Web site code executes to see if commands could lead to cross-site scripting or other attacks used to deliver malware to computers via a Web browser.

DOM Snitch (download) "enables developers and testers to identify insecure practices commonly found in client-side code," said Google security test engineer Radoslav Vasilev in a blog post. He elaborated:

The link for this article located at CNET is no longer available.