HARmor: Open-source tool for sanitizing and securing HAR files

2023-11-15 06:53

HARmor is an open-source tool that sanitizes HTTP Archive files.

Easy to install and run, it enables the safe handling and sharing of HAR files.

HAR files are critical for support teams working to debug and troubleshoot customer issues, but they can open vulnerabilities in system security that threat actors actively seek to exploit.

"While the sending of HAR files is almost a standard in the support industry, the idea that they can become another tool in the hands of an attacker was not an idea previously considered by CISOs. There is a great lesson learned here that we need to keep in mind: ANY data that we collect from customers, even if it's for support purposes, can be a tool in the hands of attackers. This requires every security team in every organization to run a deep analysis of any communication channel between the company and its customers," Amir Jaron, VP of R&D at Frontegg, told Help Net Security.

HARmor allows users to clean and sanitize data from their HAR files selectively.

Encryption: HARmor ensures that the sanitized HAR files are encrypted, thereby adding a layer of security in the event of unintended dissemination.

News URL

https://www.helpnetsecurity.com/2023/11/15/harmor-securing-har-files/

#opensource