[Owasp_periodic_table] Attached is an intial prototype of the Periodic Table of Vulnerabilities for comments
jim.manico at owasp.org
Tue Jun 25 17:27:35 UTC 2013
Wow, this is really taking shape. I'm very impressed...
On Jun 24, 2013, at 3:44 PM, David Fern <dfern at verizon.net> wrote:
Attached is an intial prototype of the Periodic Table of Vulnerabilities
It is not complete but I am looking for comments on the structure, then I
can finish filling in the details.
A few points:
Each box has the following information (Many have an X now as a place
holder for many):
OWASP Top 10 number
A number representing how many times this vulnerability shows up in the
chart for example "1of 3" means it shows up 3 times in the chart.
If any of the above are not relevent for the vulnerability the field will
be left blank.
The vertical acces will organize the vulnerabilities by
DREAD/Risk/Severity/Threat (one of these), I still need to do this. DREAD
may be easiest to do and get a value..
I have the OWASP top 10 vulnerabilities now in Yellow but may change to
just a thick red border
The color key at the top has other suggested groupings to shade the boxes
with. Are there any other suggestions for groupings.
Any thoughts, comments or suggestions?
<Periodic Table Prototype_6_24_2013.xlsx>
Owasp_periodic_table_of_vulnerabilities mailing list
Owasp_periodic_table_of_vulnerabilities at lists.owasp.org
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the Owasp_periodic_table_of_vulnerabilities