[Owasp-appsensor-project] Detection Point list
Colin Watson
colin.watson at owasp.org
Fri Sep 30 11:58:55 EDT 2011
During the summit I asked if we should store the detection point IDs,
titles, considerations and examples, in a more structured manner than
the wiki. That would also help us when we need to add detection
points, like the new examples just coming in from Ryan.
Yesterday I began laying out an XML file which could be used for this.
XML allows us to specify relationships (e.g. is a child of, is more
specific than, is like) and also include the mappings in my charts (to
WASC, to the OWASP Top 10, to CAPEC, to ModSecurity rules, etc). We
could then use XSLT to convert that into the wiki page, or into other
structures and layouts as needed.
Hopefully I'll post a draft version next week.
Colin
More information about the Owasp-appsensor-project
mailing list