[OWASP]-Write-Ups (Enlisting Volunteers)
========================================================

"OWASP Write-Ups" are what we, for now, will be calling the detailed
information explaining each item in the "Classes of Vulnerabilities"
list.

The "OWASP-Write-Up" template and the "Classes of Vulnerabilities" list
are attached.

We will now begin seeking volunteers for writing up the detailed attack
explanations using the template. Once the "write-ups" are divvied out,
there
will be a 2-3 week deadline to get them back in for a QA review
performed by
Mark Curphey and Dennis Groves (also possibly myself).

For this task, I feel the need to state the obvious...

These "OWASP Write-Up's" are very important to the content and value
of the entire OWASP project. Each of write-up should require thorough
research
and thoughtful detailed explanation. The explanations should be easy to
follow,
comprehend and solve. I understand that these new topics that may be
foreign to
most, even in the security world, but we must do our best ensure our
content is
top-notch.

How do you request a topic?
I don't know exactly what the turn out on this will be, but for the
matters
of organization, if you would like to contribute a "write-up", please
respond
and state 1 or more items on the list your interested in. Then we take
it
from there....

If we get many people wanting to do the same topics, I urge those to
work
on the write-up together. I'll let you know if that happens.

Thank you everyone for the support and you have any questions, lemme
know.

Jeremiah Grossman

CLASSIFICATION OF VULNERABILITIES
=================================

Informational
-------------

This class of vulnerabilities describes issues that allow
an attacker to obtain more information about the system
than is intended or desired.
        
        Comments
        Identifying Characteristics
        Error Codes
        Forceful Browsing

Input Validation
----------------

This class of vulnerabilities describes issues that allow
an attacker to create input to a system which will be
processed to his/her advantage.

        Circumventing Validation (client side manipulation)
        Unicode Encoded Strings
        URL Encoded Strings
        OS Commands
        Direct SQL Commands
        Buffer Overflows
        Path Traversal
        Cross-Site Scripting
        Format Strings
        Null Characters
        Meta Characters

Session Management
------------------

This class of vulnerabilities describes issues that arise
from improperly designed session management systems.

        Page Sequencing
        Session Hi-Jacking
        Session Replay
        Man in the Middle Attacks

Authentication
--------------

This class of vulnerabilities describes issues that arise
from improperly designed authentication systems.

-Cookie Poisoning
-WWW Session Hijacking
-Timeout Issues
-Forged Attacks
-Password Recovery

        Brute force (totally offline attack)
                -Brute Force/Reverse Brute Force
        Interrogative adversary (adaptive chosen message attack)
                -Client IP Tracking
        Passive eavesdropper (listen, but can't modify network)
        Active eavesdrops (total control of the network)

Parameter Manipulation
----------------------

This class of vulnerabilities describes issues that allow an
attacker to manipulate input parameters to a system which will
be processed to his/her advantage.
        
        URL Manipulation
        Hidden Form Field Manipulation
        Cookie Manipulation
        Serialized Object Manipulation

Privacy Violations
------------------

This class of vulnerabilities describes issues where users
personal data maybe visible to others than the intended user.
        
        Browser Cache
        Browser History
        Auto-completes
        Client IP Tracking
        Referer

Mis-configurations
------------------

This class of vulnerabilities describes issues resulting from
improperly configured settings for any component in the system.

        Vendor Patches
        Default Accounts

Backdoors
---------

This class of vulnerabilities describes additional functionality
of a system not designed to be accessed by regular users.
        
        Debug Commands
        Covert Channels

Trojans
-------

This class of vulnerabilities describes foreign components
designed to subvert the system or user security.

        Malicious mobile code
        Application Trojans
        Data Tainting

OWASP CLASSES OF VULNERABILITIES
================================

Class
-----

<class of attack>

Attack Name
-----------

<attack name>

OWASP ID
--------

<naming convention>

<example>
OWASP-IV-BO-1
OWASP-(I)nput(V)alidation-(B)uffer(O)verflow-#

Attack Target
-------------

<target of attack>

Mechanism
---------

<mechanism used to perform the attack>

Description
-----------

<paragraph description of the attack>

Analysis
--------

<full detailed analysis and description of attack>

Methodology
-----------

Countermeasures
---------------

<possible solutions to the security issue>

See Also
--------

<other reference material on OWASP or other>

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]