This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org
OWASP VFW Project/Roadmap
From OWASP
Revision as of 22:41, 7 August 2011 by Paulo Coimbra (talk | contribs) (Created page with "*HTTP RFC ensuring/enforcement. *Generic/"WEB-1" threats: **Dir Traversal; **Internal file extensions (SO, Web, VCS, etc); **Unix/Windows commands; **Bad UA (scanners); *Load HTT...")
- HTTP RFC ensuring/enforcement.
- Generic/"WEB-1" threats:
- Dir Traversal;
- Internal file extensions (SO, Web, VCS, etc);
- Unix/Windows commands;
- Bad UA (scanners);
- Load HTTP BODY (POST) - Prove Of Concept;
- Injection:
- SQL Injection;
- SSI Injection;
- XSS;
- Automated tests;
- Simple Web Interface (Dashboard);
- Módule for handle HTTP BODY (POST) - VMOD;
- HTTP BODY VMOD improvements:
- Handle content-types (webservices);
- XML;
- JSON.
- Handle content-types (webservices);