Talk:The OWASP Testing Framework
It would be good to have an application security testing tools evaluation section based on end user experience.
Here is a proposal: Create a table with all the Top Ten CVE's and other common features in the first column. In adjacent columns provide the names of the various application security testing tools and their overalll score (0- Not Applicable. 1- Poor, 2- Good, 3- Very Good, 4- Excellent) This list would have to be maintained as the software suppliers make improvements to their products.
The figure could be improved:
- the text in the boxes is not always aligned consistently (sometimes it's left-aligned, sometimes it's centered)
- fonts in the figure should be used consistently
- some of the boxes in the figure do not correspond to any part of the text
Marco 21:45, 29 July 2008 (EDT)