[OWASP-TESTING] Part 1 Update and Session Token Testing Request

Daniel daniel at deeper.co.za
Thu Jul 29 02:18:16 EDT 2004


there is a table of contents due to be posted by me as soon as i get 
this work load out of the way.
Im hoping this will be approved by everyone so we can then start 
working on assigning the sections and getting the structure done

Sorry for the delay on this, damn normal jobs :0(


On 29 Jul 2004, at 02:53, Mark Curphey wrote:

> Can someone please send me the great work (I forget who did it) on 
> black box testing session management / session tokens? I would like to 
> add it as an Appendix to Part 1 of an example of what will be coming 
> in Part 2.
>
> I spent time today reworking the main chapters about techniques 
> (manual inspections, code review, threat modeling and pen testing). 
> This was because when we read through it as a whole document after the 
> tech editor had his wicked way, some sections were just far to 
> detailed for this document. They will all be able to be re-purposed 
> for Part 2 so its certainly not lost work.
>
> Larry and I will be updating Chapter 2 and the final Framework Chapter 
> tomorrow and we hope to then have a final draft for you all to review 
> by the end of the week.
>
> Finally we maybe able to release this next week! Yippee.
>
> Cheers,
>
>
> Mark
>
> PS What is the status of Part 2? Who is working on what? Is there a 
> "table of contents"?
>
>
> -------------------------------------------------------
> This SF.Net email is sponsored by BEA Weblogic Workshop
> FREE Java Enterprise J2EE developer tools!
> Get your free copy of BEA WebLogic Workshop 8.1 today.
> http://ads.osdn.com/?ad_idG21&alloc_id040&op=click
> _______________________________________________
> owasp-testing mailing list
> owasp-testing at lists.sourceforge.net
> https://lists.sourceforge.net/lists/listinfo/owasp-testing





More information about the Owasp-testing mailing list