Denim Group Ltd. yesterday released Sprajax, an open-source Web application security scanner developed to assess
the security of Ajax-enabled Web applications.
Sprajax is the first Web security scanner developed specifically to scan Ajax Web applications for security vulnerabilities. Denim Group, an IT consultancy specializing in Web application security, developed the tool after it realized there were no tools available on the market able to scan Ajax.
The tool provides a diagnosis of security vulnerabilities within the Ajax code that other Web security scanners are not designed to read. The software then produces a report of possible weaknesses for developers to remedy.
Dan Cornell, principal at Denim Group, said internal developers and security auditors can use this software to produce an initial vulnerability assessment.
"This can be invaluable, especially in the wake of government regulations regarding Web application security," Cornell said. "Organizations must take steps to protect sensitive data in public facing applications, and an assessment using a tool like Sprajax could be the first step."
Cornell added that the fact that the software is open source "places it in reach for organizations of all sizes."
Sprajax is available for download from Denim's Web site.