[Owasp-leaders] New Attack Vector Documentation

Jim Manico jim.manico at owasp.org
Tue May 17 23:40:46 UTC 2016


Indeed, there are ways to label certain wiki pages as attacks. Take a
look at https://www.owasp.org/index.php/Cross-site_Scripting_%28XSS%29
as an example for proper wiki tagging. If you have any questions let me
know.

Aloha, Jim



On 5/17/16 12:59 PM, Ahmed Abbas wrote:
>
> Dear OWASP Leaders,
>
>
> A friend of mine came up with a new attack vector that relates to the
> Login by QR Code feature and he is asking about how to contribute his
> research to OWASP and how can he send the proper papers regarding it
> to be listed as an attack vector in OWASP guidelines. Is there any
> documented process explaining how new attack vectors get documented?
> He also wants to ask if it is necessary to have a tool (PoC) to be
> included with the attack documentation to be accepted by OWASP?
>
> Thanks in advance for your comments, and explanations.
>
>
> Kind Regards.
>
>
> -- 
> *Ahmed Abbas*
> OWASP Khartoum Co-Leader
> https://twitter.com/OWASPKhartoum 
>
>
>
> _______________________________________________
> OWASP-Leaders mailing list
> OWASP-Leaders at lists.owasp.org
> https://lists.owasp.org/mailman/listinfo/owasp-leaders

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.owasp.org/pipermail/owasp-leaders/attachments/20160517/3b0740ab/attachment.html>


More information about the OWASP-Leaders mailing list