The current main use of HTTPush is to help an experienced HTTP security person understand how a web application works. By reviewing the data exchanged between the browser and the application, security vulnerabilities can be identified.
At the moment this process is not automated at all, making the application useful only to those people familiar with HTTP security. The idea is to automate the process as much as possible, making it possible to automatically get a glimpse of what the vulnerabilities of a web application may be. This automation is currently being added as "plugins" (you can find the API up for review in the project website and comment on it) and has already been incorporated in the current CVS code.
The next releases will target a better usability and a greated automation of the security review process.
Hope this answers your questions, if you get a change to test the current code any comment is appreciated :)
Cheers,
Lluis Mora
If you would like to refer to this comment somewhere else in this project, copy and paste the following link:
hi,
what is the current status? is the project dead? there is no activity for almost 1 year.
also can you explain what may be the practical uses of httpush?
Hi,
The current main use of HTTPush is to help an experienced HTTP security person understand how a web application works. By reviewing the data exchanged between the browser and the application, security vulnerabilities can be identified.
At the moment this process is not automated at all, making the application useful only to those people familiar with HTTP security. The idea is to automate the process as much as possible, making it possible to automatically get a glimpse of what the vulnerabilities of a web application may be. This automation is currently being added as "plugins" (you can find the API up for review in the project website and comment on it) and has already been incorporated in the current CVS code.
The next releases will target a better usability and a greated automation of the security review process.
Hope this answers your questions, if you get a change to test the current code any comment is appreciated :)
Cheers,
Lluis Mora