Difference between revisions of "Research page on Web Security Ratings and Disclosure Policies"

Jump to: navigation, search
(Other relevant OWASP projects)
(Other relevant OWASP projects)
Line 9: Line 9:
===Other relevant OWASP projects===
===Other relevant OWASP projects===
*[[:Category:OWASP Positive Security Project|OWASP Positive Security Project]]]
*[[:Category:OWASP Positive Security Project|OWASP Positive Security Project]]
== Research link==
== Research link==

Revision as of 06:51, 8 January 2010

This article is a stub. You can help OWASP by expanding it or discussing it on its Talk page.

New OWASP Project details

see How to Start an OWASP Project

Project ideas & brainstorming:

Create an OWASP project around:

Other relevant OWASP projects

Research link

Public Disclosure Policies (by Commercial websites)

  • Paypal Site Security Researchers
  • Facebook Report a Possible Security Vulnerability
  • Salesforce.com Vulnerability Reporting Policy
  • Wesabe Contacting Security - We want to hear from you (security@wesabe.com, GPG key
  • Microsoft (link?)

Other Links

Questions to answer

Question: What types of vulnerability testing is implicitly allowed? (XSS, SQLi,,XSRF)