[OWASP-TESTING] OWASP Testing Version 0 1 (2).doc

Glyn glyng at moiler.com
Thu Feb 19 09:16:16 EST 2004

I'm neck deep in application security assessments as we speak & formalising
our own methodologies on the fly, so am happy to participate in either 5 or

Am I correct in thinking that for part 1 we are talking about the broad
testing areas, motivations and strategies (e.g. input/output, session
management) rather than detailed testing strategies (like the session stuff
I sent over last month)?


-----Original Message-----
From: owasp-testing-admin at lists.sourceforge.net
[mailto:owasp-testing-admin at lists.sourceforge.net] On Behalf Of Mark Curphey
Sent: 19 February 2004 23:57
To: owasp-testing at lists.sourceforge.net
Subject: [OWASP-TESTING] OWASP Testing Version 0 1 (2).doc

OK this is a very early working draft. I was intending to spend a week of
evening and get this finished in Feb but more eyes and more inout the

I think rather than delve into edits, lets organize into a few small working
groups on each chapter. We can then do peer reviews etc and work faster. 

I think the Chapters are almost there; we have 6 (remember this is only Part

1. Introduction
2. Reasons for Testing
3. Scope of Testing
4. Principles
5. Testing Techniques
6. Testing Frameowrk Explained

Is this a good flow ? Should there be other stuff ?

 <<OWASP Testing Version 0 1 (2).doc>> 

More information about the Owasp-testing mailing list