[Owasp_periodic_table] Attached is an intial prototype of the Periodic Table of Vulnerabilities for comments

Jim Manico jim.manico at owasp.org
Tue Jun 25 17:27:35 UTC 2013


Wow, this is really taking shape. I'm very impressed...

--
Jim Manico
@Manicode
(808) 652-3805

On Jun 24, 2013, at 3:44 PM, David Fern <dfern at verizon.net> wrote:

Attached is an intial prototype of the Periodic Table of Vulnerabilities
for comments

It is not complete but I am looking for comments on the structure, then I
can finish filling in the details.

A few points:
Each box has the following information (Many have an X now as a place
holder for many):
Name
Ynlnerability Symbol
OWASP Top 10 number
CVE#
CWE#
WASC#
A number representing how many times this vulnerability shows up in the
chart for example "1of 3" means it shows up 3 times in the chart.

If any of the above are not relevent for the vulnerability the field will
be left blank.

The vertical acces will organize the vulnerabilities by
DREAD/Risk/Severity/Threat (one of these), I still need to do this. DREAD
may be easiest to do and get a value..

I have the OWASP top 10 vulnerabilities now in Yellow but may change to
just a thick red border

The color key at the top has other suggested groupings to shade the boxes
with. Are there any other suggestions for groupings.

Any thoughts, comments or suggestions?

Thanks,
David

<Periodic Table Prototype_6_24_2013.xlsx>

_______________________________________________
Owasp_periodic_table_of_vulnerabilities mailing list
Owasp_periodic_table_of_vulnerabilities at lists.owasp.org
https://lists.owasp.org/mailman/listinfo/owasp_periodic_table_of_vulnerabilities
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.owasp.org/pipermail/owasp_periodic_table_of_vulnerabilities/attachments/20130625/e459e530/attachment.html>


More information about the Owasp_periodic_table_of_vulnerabilities mailing list