[WEB SECURITY] Manual audits

Ross Lotharius ross.lotharius at gmail.com
Fri Jun 24 12:14:44 EDT 2005


I'd recommend reading Writing Secure Code 2nd Edition ISBN: 0735617228
 
Hope it helps 


  _____  

From: John Muchow [mailto:jmuchow at midwave.com] 
Sent: Friday, June 24, 2005 9:59 AM
To: websecurity at webappsec.org
Subject: [WEB SECURITY] Manual audits


With the current on-going discussion of Security Audit Software this seems a
good time to bring up a question about performing a manual audit...
 
We would like to build expertise in conducting manual audits, with that, I
would like to gather input as to recommendations of how to go about gaining
the knowledge. This could be articles/papers, web-sites, best practices,
tools, scripts, etc. Essentially, for those who conduct such audits, how did
you go about learning the techniques and what means do you use to stay
current?
 
Thanks
 
John
--------------------------------------------------------------------- The
Web Security Mailing List http://www.webappsec.org/lists/websecurity/ The
Web Security Mailing List Archives
http://www.webappsec.org/lists/websecurity/archive/ 
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.webappsec.org/pipermail/websecurity_lists.webappsec.org/attachments/20050624/4ccc9b23/attachment.html>


More information about the websecurity mailing list