[Owasp-leaders] Scanning nextgen / modern web apps

psiinon psiinon at gmail.com
Fri Jan 13 11:29:07 UTC 2017


I've created a Google Group:
https://groups.google.com/forum/#!forum/owasp-scanning-modern-web-apps
Hopefully I've given everyone access to everyone who's asked for it, if
I've missed anyone (or if you just hadnt replied yet) then just request
access.
I've also started a shared Google Doc but you'll need to join the group to
get the link to that :P

Cheers,

Simon

On Thu, Jan 12, 2017 at 3:34 PM, psiinon <psiinon at gmail.com> wrote:

> Leaders,
>
> Björn has proposed
> <https://github.com/OWASP/owasp-summit-2017/pull/40/files> a workshop on
> "NextGen Security Scanners" for the OWASP Summit - to quote him:
>
> Today's security scanners were built for yesterday's web applications,
> based on server-side rendering concepts. They often fail or at least lack
> functionality when it comes to modern web applications using rich
> Javascript clients.
>
> I think he's absolutely right, but I dont want to wait until June ;)
>
> So who would like to join a discussion around this now?
>
> Please reply directly to me (rather than the whole list) if you just want
> to say "me too" :)
>
> I was thinking of just creating a Google Group for the discussions (so we
> dont spam the leaders list), but feel free to propose alternative
> approaches. The proposed Summit workshop can build on these discussions but
> I'm expecting many people wont be able to make that.
>
> Obviously I'm thinking about ZAP, but this is not a ZAP specific
> discussion - it could apply to any existing or future scanners. Maybe we
> could even develop some components that could be reused by all scanners?
>
> Cheers,
>
> Simon
>
> --
> OWASP ZAP <https://www.owasp.org/index.php/ZAP> Project leader
>



-- 
OWASP ZAP <https://www.owasp.org/index.php/ZAP> Project leader
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.owasp.org/pipermail/owasp-leaders/attachments/20170113/b26f7103/attachment.html>


More information about the OWASP-Leaders mailing list