[Owasp_periodic_table] Attached is an intial prototype of the Periodic Table of Vulnerabilities for comments

David Fern dfern at verizon.net
Tue Jun 25 01:43:58 UTC 2013


Attached is an intial prototype of the Periodic Table of Vulnerabilities for comments
 
It is not complete but I am looking for comments on the structure, then I can finish filling in the details.
 
A few points:
Each box has the following information (Many have an X now as a place holder for many):
Name
Ynlnerability Symbol
OWASP Top 10 number
CVE#
CWE# 
WASC#
A number representing how many times this vulnerability shows up in the chart for example "1of 3" means it shows up 3 times in the chart.
 
If any of the above are not relevent for the vulnerability the field will be left blank.
 
The vertical acces will organize the vulnerabilities by DREAD/Risk/Severity/Threat (one of these), I still need to do this. DREAD may be easiest to do and get a value..

I have the OWASP top 10 vulnerabilities now in Yellow but may change to just a thick red border

The color key at the top has other suggested groupings to shade the boxes with. Are there any other suggestions for groupings.

Any thoughts, comments or suggestions?

Thanks,
David
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.owasp.org/pipermail/owasp_periodic_table_of_vulnerabilities/attachments/20130624/ff8f4453/attachment-0001.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: Periodic Table Prototype_6_24_2013.xlsx
Type: application/vnd.openxmlformats-officedocument.spreadsheetml.sheet
Size: 17862 bytes
Desc: not available
URL: <http://lists.owasp.org/pipermail/owasp_periodic_table_of_vulnerabilities/attachments/20130624/ff8f4453/attachment-0001.xlsx>


More information about the Owasp_periodic_table_of_vulnerabilities mailing list