IBM’s Lotus Domino is a unique server platform which requires a unique procedure for both black and white box testing. Many standard attacks such as SQL injection are simply not possible with Domino, although at the same time many other, often more dangerous attacks are possible. A perusal of the commonly used tools reveals that there is very limited coverage of the attacks which are unique to Domino, and very little literature seems to exist. This paper seems to present the background information on how Domino works, as well as the framework for Domino specific black and whitebox testing.
Speaker bio will be posted shortly.