'Firefox Web Developer' is a hidden security gem
Have you ever come across a situation where you've needed a tool but didn't think you had the right one to get the job done? Like when you're trying to change a smoke detector battery or tighten a loose door knob -- it seems as if the tool you need is never handy, and you might even have to go out and buy it. What we tend to forget is that we can often solve our project needs with ordinary household items like a butter knife or nail clippers -- things that you wouldn't expect to use but can get the job done.
Now shift into the application security mindset and voila, there's Firefox Web Developer: an unlikely "security testing" tool but one that serves the purpose very well. It's not only handy via this quick download -- it's also free. Originally a tool for tweaking and troubleshooting Web pages, Web Developer (shown in Figure 1) has evolved over the past six years as a formidable tool for manually uncovering security flaws.