[Owasp-testing] Reviewer of OTG-INFO-001 and OTG-INFO-003

Andrew Muller andrew at ionize.com.au
Sun Aug 4 11:25:08 UTC 2013


Hi Christian, 
thanks for your offer to review these two test cases. Offer gratefully accepted! I'll add you as reviewer of those articles now. But please don't restrict yourself to these two if you have the bandwidth. 

Andrew. 

----- Original Message -----

From: "Christian Heinrich" <christian.heinrich at cmlh.id.au> 
To: owasp-testing at lists.owasp.org 
Sent: Sunday, 4 August, 2013 8:46:36 PM 
Subject: [Owasp-testing] Reviewer of OTG-INFO-001 and OTG-INFO-003 

Matteo and Andrew, 

I noticed that both "Review Webserver Metafiles for Information 
Leakage" and "Conduct search engine discovery/reconnaissance for 
information leakage" have drifted towards 
http://johnny.ihackstuff.com/ghdb/ after v3 was published (in hardcopy 
before February 2009). 

Furthermore, this content within the OWASP Testing Guide v3 was a 
subset of the scope of a much larger process that I last presented in 
2009 i.e. unpack 
http://www.syscan.org/index.php/download/get/38d3739861e3e9ef8ee4d07d22c9a8be/SyScan09_Singapore_Slides.zip 
and the slides are "cmlh - googless - SyScan'09SG - Last Updated 25 
June 2009.pdf" 

Roberto also wanted to contribute some of his research too i.e. 
http://lists.owasp.org/pipermail/owasp-testing/2011-August/001932.html 

Would it be possible to be assigned as a reviewer to both these 
sections for v3 before they "go to press" (so to speak)? 


-- 
Regards, 
Christian Heinrich 

http://cmlh.id.au/contact 
_______________________________________________ 
Owasp-testing mailing list 
Owasp-testing at lists.owasp.org 
https://lists.owasp.org/mailman/listinfo/owasp-testing 

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.owasp.org/pipermail/owasp-testing/attachments/20130804/f8577b2b/attachment.html>


More information about the Owasp-testing mailing list