[WEB SECURITY] Manual audits

Ross Lotharius ross.lotharius at gmail.com
Fri Jun 24 12:14:44 EDT 2005

I'd recommend reading Writing Secure Code 2nd Edition ISBN: 0735617228
Hope it helps 


From: John Muchow [mailto:jmuchow at midwave.com] 
Sent: Friday, June 24, 2005 9:59 AM
To: websecurity at webappsec.org
Subject: [WEB SECURITY] Manual audits

With the current on-going discussion of Security Audit Software this seems a
good time to bring up a question about performing a manual audit...
We would like to build expertise in conducting manual audits, with that, I
would like to gather input as to recommendations of how to go about gaining
the knowledge. This could be articles/papers, web-sites, best practices,
tools, scripts, etc. Essentially, for those who conduct such audits, how did
you go about learning the techniques and what means do you use to stay
--------------------------------------------------------------------- The
Web Security Mailing List http://www.webappsec.org/lists/websecurity/ The
Web Security Mailing List Archives
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.webappsec.org/pipermail/websecurity_lists.webappsec.org/attachments/20050624/4ccc9b23/attachment.html>

More information about the websecurity mailing list