This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org

OWASP VFW Project/Roadmap

From OWASP
Revision as of 22:41, 7 August 2011 by Paulo Coimbra (talk | contribs) (Created page with "*HTTP RFC ensuring/enforcement. *Generic/"WEB-1" threats: **Dir Traversal; **Internal file extensions (SO, Web, VCS, etc); **Unix/Windows commands; **Bad UA (scanners); *Load HTT...")

(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to: navigation, search
  • HTTP RFC ensuring/enforcement.
  • Generic/"WEB-1" threats:
    • Dir Traversal;
    • Internal file extensions (SO, Web, VCS, etc);
    • Unix/Windows commands;
    • Bad UA (scanners);
  • Load HTTP BODY (POST) - Prove Of Concept;
  • Injection:
    • SQL Injection;
    • SSI Injection;
  • XSS;
  • Automated tests;
  • Simple Web Interface (Dashboard);
  • Módule for handle HTTP BODY (POST) - VMOD;
  • HTTP BODY VMOD improvements:
    • Handle content-types (webservices);
      • XML;
      • JSON.
Retrieved from "https://wiki.owasp.org/index.php?title=OWASP_VFW_Project/Roadmap&oldid=115195"