User contributions

(newest | oldest) View (newer 50 | older 50) (20 | 50 | 100 | 250 | 500)

11:57, 8 August 2014 (diff | hist) . . (+72)‎ . . N Testing for Bypassing Authorization Schema (OTG-AUTHZ-003) ‎ (Andrew Muller moved page Testing for Bypassing Authorization Schema (OTG-AUTHZ-003) to Testing for Bypassing Authorization Schema (OTG-AUTHZ-002)) (current)
11:57, 8 August 2014 (diff | hist) . . (0)‎ . . m Talk:Testing for Bypassing Authorization Schema (OTG-AUTHZ-002) ‎ (Andrew Muller moved page Talk:Testing for Bypassing Authorization Schema (OTG-AUTHZ-003) to Talk:Testing for Bypassing Authorization Schema (OTG-AUTHZ-002)) (current)
11:57, 8 August 2014 (diff | hist) . . (+77)‎ . . N Talk:Testing for Bypassing Authorization Schema (OTG-AUTHZ-003) ‎ (Andrew Muller moved page Talk:Testing for Bypassing Authorization Schema (OTG-AUTHZ-003) to Talk:Testing for Bypassing Authorization Schema (OTG-AUTHZ-002)) (current)
11:57, 8 August 2014 (diff | hist) . . (0)‎ . . m Testing for Bypassing Authorization Schema (OTG-AUTHZ-002) ‎ (Andrew Muller moved page Testing for Bypassing Authorization Schema (OTG-AUTHZ-003) to Testing for Bypassing Authorization Schema (OTG-AUTHZ-002)) (current)
11:56, 8 August 2014 (diff | hist) . . (0)‎ . . m Testing Directory traversal/file include (OTG-AUTHZ-001) ‎ (Andrew Muller moved page Testing for Path Traversal (OTG-AUTHZ-002) to Testing for Path Traversal (OTG-AUTHZ-001))
11:56, 8 August 2014 (diff | hist) . . (+56)‎ . . N Testing for Path Traversal (OTG-AUTHZ-002) ‎ (Andrew Muller moved page Testing for Path Traversal (OTG-AUTHZ-002) to Testing for Path Traversal (OTG-AUTHZ-001)) (current)
11:56, 8 August 2014 (diff | hist) . . (0)‎ . . m Talk:Testing Directory traversal/file include (OTG-AUTHZ-001) ‎ (Andrew Muller moved page Talk:Testing for Path Traversal (OTG-AUTHZ-002) to Talk:Testing for Path Traversal (OTG-AUTHZ-001))
11:56, 8 August 2014 (diff | hist) . . (+61)‎ . . N Talk:Testing for Path Traversal (OTG-AUTHZ-002) ‎ (Andrew Muller moved page Talk:Testing for Path Traversal (OTG-AUTHZ-002) to Talk:Testing for Path Traversal (OTG-AUTHZ-001)) (current)
11:54, 8 August 2014 (diff | hist) . . (+64)‎ . . N Talk:Test RIA cross domain policy (OTG-CONFIG-011) ‎ (Andrew Muller moved page Talk:Test RIA cross domain policy (OTG-CONFIG-011) to Talk:Test RIA cross domain policy (OTG-CONFIG-008)) (current)
11:54, 8 August 2014 (diff | hist) . . (0)‎ . . m Test RIA cross domain policy (OTG-CONFIG-008) ‎ (Andrew Muller moved page Test RIA cross domain policy (OTG-CONFIG-011) to Test RIA cross domain policy (OTG-CONFIG-008))
11:54, 8 August 2014 (diff | hist) . . (+59)‎ . . N Test RIA cross domain policy (OTG-CONFIG-011) ‎ (Andrew Muller moved page Test RIA cross domain policy (OTG-CONFIG-011) to Test RIA cross domain policy (OTG-CONFIG-008)) (current)
11:54, 8 August 2014 (diff | hist) . . (0)‎ . . m Talk:Test RIA cross domain policy (OTG-CONFIG-008) ‎ (Andrew Muller moved page Talk:Test RIA cross domain policy (OTG-CONFIG-011) to Talk:Test RIA cross domain policy (OTG-CONFIG-008)) (current)
11:54, 8 August 2014 (diff | hist) . . (0)‎ . . m Test HTTP Strict Transport Security (OTG-CONFIG-007) ‎ (Andrew Muller moved page Test HTTP Strict Transport Security (OTG-CONFIG-009) to Test HTTP Strict Transport Security (OTG-CONFIG-007)) (current)
11:54, 8 August 2014 (diff | hist) . . (+66)‎ . . N Test HTTP Strict Transport Security (OTG-CONFIG-009) ‎ (Andrew Muller moved page Test HTTP Strict Transport Security (OTG-CONFIG-009) to Test HTTP Strict Transport Security (OTG-CONFIG-007)) (current)
11:53, 8 August 2014 (diff | hist) . . (+34)‎ . . m OWASP Testing Guide v4 Table of Contents ‎ (Fix links)
11:52, 8 August 2014 (diff | hist) . . (+62)‎ . . N Testing: Identify application entry points (OTG-INFO-006) ‎ (Andrew Muller moved page Testing: Identify application entry points (OTG-INFO-006) to Identify application entry points (OTG-INFO-006): fix page title) (current)
11:52, 8 August 2014 (diff | hist) . . (0)‎ . . m Talk:Identify application entry points (OTG-INFO-006) ‎ (Andrew Muller moved page Talk:Testing: Identify application entry points (OTG-INFO-006) to Talk:Identify application entry points (OTG-INFO-006): fix page title) (current)
11:52, 8 August 2014 (diff | hist) . . (+67)‎ . . N Talk:Testing: Identify application entry points (OTG-INFO-006) ‎ (Andrew Muller moved page Talk:Testing: Identify application entry points (OTG-INFO-006) to Talk:Identify application entry points (OTG-INFO-006): fix page title) (current)
11:52, 8 August 2014 (diff | hist) . . (0)‎ . . m Identify application entry points (OTG-INFO-006) ‎ (Andrew Muller moved page Testing: Identify application entry points (OTG-INFO-006) to Identify application entry points (OTG-INFO-006): fix page title)
11:48, 8 August 2014 (diff | hist) . . (0)‎ . . m Map Application Architecture (OTG-INFO-010) ‎ (Andrew Muller moved page Map Network and Application Architecture (OTG-INFO-010) to Map Application Architecture (OTG-INFO-010)) (current)
11:48, 8 August 2014 (diff | hist) . . (+57)‎ . . N Map Network and Application Architecture (OTG-INFO-010) ‎ (Andrew Muller moved page Map Network and Application Architecture (OTG-INFO-010) to Map Application Architecture (OTG-INFO-010)) (current)
11:47, 8 August 2014 (diff | hist) . . (+69)‎ . . N Map Network and Application Architecture (OTG-INFO-012) ‎ (Andrew Muller moved page Map Network and Application Architecture (OTG-INFO-012) to Map Network and Application Architecture (OTG-INFO-010): make numbering sequential so folks don't lose their minds) (current)
11:47, 8 August 2014 (diff | hist) . . (0)‎ . . m Map Application Architecture (OTG-INFO-010) ‎ (Andrew Muller moved page Map Network and Application Architecture (OTG-INFO-012) to Map Network and Application Architecture (OTG-INFO-010): make numbering sequential so folks don't lose their minds)
11:46, 8 August 2014 (diff | hist) . . (0)‎ . . m Fingerprint Web Application (OTG-INFO-009) ‎ (Andrew Muller moved page Testing for Web Application (OTG-INFO-011) to Testing for Web Application (OTG-INFO-009): make numbering sequential so folks don't lose their minds)
11:46, 8 August 2014 (diff | hist) . . (+56)‎ . . N Testing for Web Application (OTG-INFO-011) ‎ (Andrew Muller moved page Testing for Web Application (OTG-INFO-011) to Testing for Web Application (OTG-INFO-009): make numbering sequential so folks don't lose their minds) (current)
11:46, 8 August 2014 (diff | hist) . . (0)‎ . . m Fingerprint Web Application Framework (OTG-INFO-008) ‎ (Andrew Muller moved page Fingerprint Web Application Framework (OTG-INFO-009) to Fingerprint Web Application Framework (OTG-INFO-008): make numbering sequential so folks don't lose their minds)
11:46, 8 August 2014 (diff | hist) . . (+66)‎ . . N Fingerprint Web Application Framework (OTG-INFO-009) ‎ (Andrew Muller moved page Fingerprint Web Application Framework (OTG-INFO-009) to Fingerprint Web Application Framework (OTG-INFO-008): make numbering sequential so folks don't lose their minds) (current)
11:45, 8 August 2014 (diff | hist) . . (+68)‎ . . N Map execution paths through application (OTG-INFO-008) ‎ (Andrew Muller moved page Map execution paths through application (OTG-INFO-008) to Map execution paths through application (OTG-INFO-007): make numbering sequential so folks don't lose their minds) (current)
11:45, 8 August 2014 (diff | hist) . . (0)‎ . . m Map execution paths through application (OTG-INFO-007) ‎ (Andrew Muller moved page Map execution paths through application (OTG-INFO-008) to Map execution paths through application (OTG-INFO-007): make numbering sequential so folks don't lose their minds) (current)
11:40, 8 August 2014 (diff | hist) . . (+737)‎ . . Fingerprint Web Application (OTG-INFO-009) ‎
10:31, 8 August 2014 (diff | hist) . . (-563)‎ . . m Fingerprint Web Application Framework (OTG-INFO-008) ‎ (trim the cookies table to remove web application cookies (rather than web app framework cookies))
08:06, 8 August 2014 (diff | hist) . . (+9)‎ . . Reporting ‎
08:04, 8 August 2014 (diff | hist) . . (+8,075)‎ . . Reporting ‎ (replace the table images with inline table)
07:13, 8 August 2014 (diff | hist) . . (-209)‎ . . OWASP Testing Guide v4 Table of Contents ‎ (Removed the risk rating chapter because other folks do risk management far better than OWASP. OWASP should focus on appsec.)
07:11, 8 August 2014 (diff | hist) . . (0)‎ . . m Reporting ‎ (Andrew Muller moved page How to write the report of the testing to Reporting: made this the only report writing chapter and removed reference to risk ratings as other folks already do risk better than us. OWASP should focus on calculating vulne...)
07:11, 8 August 2014 (diff | hist) . . (+23)‎ . . N How to write the report of the testing ‎ (Andrew Muller moved page How to write the report of the testing to Reporting: made this the only report writing chapter and removed reference to risk ratings as other folks already do risk better than us. OWASP should focus on calculating vulne...) (current)
07:09, 8 August 2014 (diff | hist) . . (0)‎ . . m Writing Reports: value the real risk ‎ (Andrew Muller moved page Writing Reports to Writing Reports: value the real risk over redirect) (current)
07:09, 8 August 2014 (diff | hist) . . (+50)‎ . . N Writing Reports ‎ (Andrew Muller moved page Writing Reports to Writing Reports: value the real risk over redirect) (current)
15:01, 7 August 2014 (diff | hist) . . (0)‎ . . File:ProportionTest.png ‎ (Andrew Muller uploaded a new version of "File:ProportionTest.png": Snazzier looking version of graph made using OpenOffice Calc) (current)
14:58, 7 August 2014 (diff | hist) . . (0)‎ . . File:ProportionSDLC.png ‎ (Andrew Muller uploaded a new version of "File:ProportionSDLC.png": Snazzier looking version of this graph made using OpenOffice Calc) (current)
13:59, 7 August 2014 (diff | hist) . . (0)‎ . . m Writing Reports: value the real risk ‎ (Andrew Muller moved page Writing Reports: value the real risk to Writing Reports: The OWASP Testing Guide should be focusing on identifying and calculating the severity of vulnerabilites, not their risk to an organization.)
13:53, 7 August 2014 (diff | hist) . . (-8)‎ . . m Testing for Stack Traces (OTG-ERR-002) ‎
13:49, 7 August 2014 (diff | hist) . . (+1)‎ . . m Testing for Error Code (OTG-ERR-001) ‎
15:26, 5 August 2014 (diff | hist) . . (+6)‎ . . m Web Application Penetration Testing ‎ (Change Data Validation to Input Validation) (current)
15:25, 5 August 2014 (diff | hist) . . (+5)‎ . . m Testing: Introduction and objectives ‎ (Change Data Validation to Input Validation) (current)
15:24, 5 August 2014 (diff | hist) . . (+9)‎ . . m Testing Checklist ‎ (Edit Business Logic and Client Side headings)
15:22, 5 August 2014 (diff | hist) . . (-92)‎ . . m Conduct search engine discovery/reconnaissance for information leakage (OTG-INFO-001) ‎ (Reorder Tools heading)
15:18, 5 August 2014 (diff | hist) . . (-102)‎ . . m Review Webserver Metafiles for Information Leakage (OTG-INFO-003) ‎ (Align with Common Numbering, formatting)
15:08, 5 August 2014 (diff | hist) . . (+22)‎ . . m Test Application Platform Configuration (OTG-CONFIG-002) ‎ (Reformat headings)
15:05, 5 August 2014 (diff | hist) . . (-69)‎ . . m Test File Extensions Handling for Sensitive Information (OTG-CONFIG-003) ‎ (Reformat headings) (current)

(newest | oldest) View (newer 50 | older 50) (20 | 50 | 100 | 250 | 500)

Show contributions of new accounts only IP address or username:
Namespace: Invert selection Associated namespace
Tag filter:
Only show edits that are latest revisions Only show edits that are page creations
From year (and earlier): From month (and earlier):

User contributions

Navigation menu

Personal tools

Namespaces

Variants

Views

More

Search

Navigation

Reference

Tools