[OWASP-TESTING] Testing Project phase 1, ver .7

Andrew van der Stock vanderaj at greebo.net
Fri Jul 2 07:00:26 EDT 2004

I have written the section I took on, but I'm also filling in many missing
sections, and re-writing the IBM system sciences bit. Howard and LeBlanc
point to data from 


In particular:


as actual figures for loss. I think it speaks for itself, so I'm including
it instead.

I am creating a bibiliography appendix. Please feed me references not
explicitly mentioned in the document.

It's Friday very <expletive> early for the US at the moment, so please
forgive me for not writing back already.


-----Original Message-----
From: owasp-testing-admin at lists.sourceforge.net
[mailto:owasp-testing-admin at lists.sourceforge.net] On Behalf Of Mark Curphey
Sent: Thursday, 1 July 2004 10:49 PM
To: Daniel at deeper.co.za; 'owasp '
Subject: RE: [OWASP-TESTING] Testing Project phase 1, ver .7

Thanks Dan. 

I think Andrew was updating some missing sections. 

I would like to suggest the following. 

1. Andrew has until Friday morning updating / filling in as much as he can. 

2. I will then spend Friday covering anything else and send to this list. 

3. We can then all create an issues list (outside of the doc)

4. I will then setup a IM chat next week for final review to cover the
issues list.

5. We will then release the draft next Friday and I will send the draft to
the tech editor for preparation of final version.

I have a few concerns such as we all agreed that black box testing has
significant limitations yet the conclusion of that section seems to
contradict that. There are several other similar things but all can be
covered by consensus in the issues list.  

-----Original Message-----
From: owasp-testing-admin at lists.sourceforge.net
[mailto:owasp-testing-admin at lists.sourceforge.net] On Behalf Of Daniel
Sent: Thursday, July 01, 2004 7:21 AM
To: owasp 
Subject: [OWASP-TESTING] Testing Project phase 1, ver .7

hey all,

As promised here is an updated version.
There are still a few area's which need filling in, so could anyone with the
time/experience help out? (i need to get on with proper work for the next
couple of hours).



This SF.Net email sponsored by Black Hat Briefings & Training.
Attend Black Hat Briefings & Training, Las Vegas July 24-29 - 
digital self defense, top technical experts, no vendor pitches, 
unmatched networking opportunities. Visit www.blackhat.com
owasp-testing mailing list
owasp-testing at lists.sourceforge.net

More information about the Owasp-testing mailing list