[GPC] OWASP Testing Guide: start a new project

Brad Causey bradcausey at owasp.org
Mon Jun 21 10:49:21 EDT 2010


Paulo,

I like the proposal. Please let me know if I can further assist in getting
the project moving.
I especially like the branch into "Client side security and firefox
extensions testing".


-Brad Causey
CISSP, MCSE, C|EH, CIFI, CGSP

http://www.owasp.org
--
"Si vis pacem, para bellum"
--


On Mon, Jun 21, 2010 at 9:34 AM, Paulo Coimbra <paulo.coimbra at owasp.org>wrote:

>  Hello Matteo,
>
>
>
> Hope you are well.
>
>
>
> I’ve edited the Testing Guide Project’s wiki page so as to include the new
> Project About Tab and to prepare the project to receive data concerning the
> planned Guide’s version 4. Please let me know if you agree with these
> changes and please feel free to edit it as you find best.
>
>
>
>
> http://www.owasp.org/index.php/Category:OWASP_Testing_Project#tab=Project_About
>
>
>
> http://www.owasp.org/index.php/Projects/OWASP_Testing_Project
>
>
>
>
> http://www.owasp.org/index.php/Projects/OWASP_Testing_Project/Releases/Testing_Guide_V_4.0
>
>
>
>
>
> Many thanks, best regards,
>
>
>
> Paulo Coimbra,
>
> OWASP Project Manager <https://www.owasp.org/index.php/Main_Page>
>
>
>
> *From:* Matteo Meucci [mailto:matteo.meucci at owasp.org]
> *Sent:* segunda-feira, 24 de Maio de 2010 11:37
> *To:* Paulo Coimbra
> *Subject:* OWASP Testing Guide: start a new project
>
>
>
> Hi Paulo,
>
> here is my idea for the new Testing Guide.
>
>
>
> (0) Project Name: OWASP Testing Guide (v4?)
>
>
>
> (1) Project purpose / overview
>
> - Review all the control numbers to adhere to the OWASP Common
>
> numbering: http://www.owasp.org/index.php/Common_OWASP_Numbering
>
> - Review all the sections in v3
>
> - Create a more readable guide, eliminating some sections that are not
> really usefull
>
> - Insert new testing techniques: HTTP Verb tampering, HTTP Parameter
> Pollutions, ecc
>
> - Rationalize some sections as Session Management Testing
>
> - Create a new section: Client side security and firefox extensions testing
>
>
>
> (2) Project Roadmap (as mentioned above)
>
> - Introduce the new project to the testing Guide mailing list
>
> - Involve the contributors: we need to involve also the final users of the
> Testing Guide (for example Banking to understand how they would like to
> improve that).
>
> - 1st June 2010: Start a brainstorming for the new index starting from (1)
>
> - 1st July 2010: Create the new index and the new team
>
> - 15th July 2010: Starting writing articles
>
> - 15th September 2010: Starting the first review phase
>
> - 15th October 2010: Starting writing articles II phase
>
> - 15th November 2010: Starting the second review phase
>
> - 15th December 2010: Create the RC1
>
> - 15th January 2011: Release the version 4
>
>
>
> (3) Project links (if any) to external sites,
>
> - no
>
>
>
> (4) Project License
>
> (
> http://www.owasp.org/index.php/Guidelines_for_OWASP_Projects#Project_Licensing
> ),
>
> Creative Commons Attribution Share Alike 3.0 as usal :)
>
>
>
> (5) Project Leader name,
>
> Matteo Meucci
>
>
>
> (6) Project Leader email address
>
> matteo.meucci at owasp.org
>
>
>
> (7) Project Leader wiki account - the username (you'll need this to edit
> the wiki) Mmeucci
>
>
>
> (8) Project Maintainer (if any)  - name, email and wiki account (if any)
> Matteo Meucci
>
>
>
> (9) Project Contributor(s) (if any) - name email and wiki account (if any)
> A short list of contributors that would like to improve the guide:
>
> - Roberto Suggi Liverani
>
> - Nick Freeman
>
> - Stefano Di Paola
>
> - Marco Morana
>
> - Giorgio Fedon
>
> - Kevin Horvath
>
>
>
> Thanks,
>
> Mat
>
> _______________________________________________
> Global-projects-committee mailing list
> Global-projects-committee at lists.owasp.org
> https://lists.owasp.org/mailman/listinfo/global-projects-committee
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: https://lists.owasp.org/mailman/private/global-projects-committee/attachments/20100621/23cedbfe/attachment.html 


More information about the Global-projects-committee mailing list