Slashdot Mirror

← Back to Stories (view on slashdot.org)

OWASP's VulnXML Database

Posted by michael on from the autocracker dept.

Ingo Struck writes "The Open Web Application Security Project released the VulnXML db for early access to the public. VulnXML is a description of static known vulnerabilities. It provides all necessary information to let an execution engine automatically craft and launch appropriate HTTP, SOAP or WebDAV requests and analyse the response whether the attack had success. Besides it provides some human readable classification of the described vulnerability. A tool to execute VulnXML records is currently being developed and will help developers to check their web applications against a suite of well-known vulnerabilities described in a portable format."

11 of 68 comments (clear)

  1. fp by Anonymous Coward · · Score: -1, Offtopic

    fp

  2. Cool by ShieldW0lf · · Score: -1, Offtopic

    I've wanted an army of Zombies ever since playing a Necromancer in junior high.

    Thank you, thank you, thank you... you've given me the tools to make my dreams come true.

    --
    -1 Uncomfortable Truth
  3. Slashdot Troll Supply Store� by Anonymous Coward · · Score: -1, Offtopic

    New! Slashdot Troll Supply Store

    Get your latest goatse, penisbird, lemonparty, and tubgirl gear!

    http://nero-online.org/store.php

  4. michael is an asshat and a domain theif by Anonymous Coward · · Score: -1, Offtopic

    Check out my Michael T-Shirt

    New! Slashdot Troll Supply Store

    Get your latest goatse, penisbird, lemonparty, and tubgirl gear!

    http://nero-online.org/store.php

  5. 20 results found for "linux" by Anonymous Coward · · Score: -1, Offtopic

    1 It will soon be illegal because of SCO and DMCA
    2 GPL is anti-capitalist (use bsd instead)
    3 Its hard to use (Gnome for example hide all the features that make it useable in its secret gconf database)
    4 Its unstable (2.2 is the exception, but unless you apply about 1000 patches and backports its too old to be useful)
    5 The software sucks (Openoffice, *puke* at the bloat)
    6 The UI is inconsistent (read : gnome file dialog)
    7 You have to type commands (None in windows since 95)
    8 It doesn't run Windows programs (wine dosen't count)
    9 You cannot buy a computer with Linux (Lindows at walmart dosen't count)
    10 Linux companies are going out of bussiness (Mandrake for example)
    11 RMS is a communist arsehole (note the arse)
    12 High total cost of ownership
    13 Too many distros
    14 Un-american (American software sucks anyway)
    15 Its not from microsoft (Therefore it does not have a monopoly in order to succeed)
    16 Poor security track record (look at the kernel change logs)
    17 Anyone and their 14 year old brother can add (buggy) code (and yes, it DOES sneak through CVS)
    18 Even BeOS was better (try it and you will see te light)
    19 Eugenia doesn't like it (she dosen't like anything actually)
    20 It SUCKS!!!!!!!!!!!!! (-1, flamebait dosen't change this)

  6. michael, I have a hundred working open proxies by Anonymous Coward · · Score: -1, Offtopic

    modbomb me at will! I cannot be stopped, you domain hijacking terrorist

    New! Slashdot Troll Supply Store

    Get your latest goatse, penisbird, lemonparty, and tubgirl gear!

    http://nero-online.org/store.php

  7. Instead of modding down, try fixing it! by Anonymous Coward · · Score: -1, Offtopic

    Straight from the modded down setion of OSnews, the TRUTH about linux. Eugina can suck my cock while it BLEEDS! (Text in brackets pre-empt kneejerk responses)

    1 It will soon be illegal because of SCO and DMCA
    2 GPL is anti-capitalist (use bsd instead)
    3 Its hard to use (Gnome for example hide all the features that make it useable in its secret gconf database)
    4 Its unstable (2.2 is the exception, but unless you apply about 1000 patches and backports its too old to be useful)
    5 The software sucks (Openoffice, *puke* at the bloat)
    6 The UI is inconsistent (read : gnome file dialog)
    7 You have to type commands (None in windows since 95)
    8 It doesn't run Windows programs (wine dosen't count)
    9 You cannot buy a computer with Linux (Lindows at walmart dosen't count)
    10 Linux companies are going out of bussiness (Mandrake for example)
    11 RMS is a communist arsehole (note the arse)
    12 High total cost of ownership
    13 Too many distros
    14 Un-american (American software sucks anyway)
    15 Its not from microsoft (Therefore it does not have a monopoly in order to succeed)
    16 Poor security track record (look at the kernel change logs)
    17 Anyone and their 14 year old brother can add (buggy) code (and yes, it DOES sneak through CVS)
    18 Even BeOS was better (try it and you will see te light)
    19 Eugenia doesn't like it (she dosen't like anything actually)
    20 It SUCKS!!!!!!!!!!!!! (-1, flamebait dosen't change this)

  8. Warning from goatse.cx by Anonymous Coward · · Score: -1, Offtopic

    IMPORTANT NOTE: There are many merchandising attempts for goatse.cx around the web-- none of them are real, none of them are official. Do not buy this gimmick merchandise. The official goatse.cx merchandise is coming soon!

    So trolls, don't buy from the Slashdot troll store

    Theres 20 other reasons not to buy from trollstore

    1 It will soon be illegal because of SCO
    2 GPL is anti-capitalist
    3 Its hard to buy
    4 Its unstutible
    5 The fabric sucks
    6 The designs are inconsistent
    7 You have to dry clean it.
    8 You can't buy it from windows
    9 You cannot buy it.
    10 Troll store is going out of business
    11 Nero is a communist arsehole
    12 High total cost of ownership
    13 Too many items
    14 Un-american
    15 Its not from microsoft
    16 Poor feedback track record
    17 Anyone and their 14 year old brother can mae their own store.
    18 Even goatsemerch was better
    19 Eugenia doesn't like it
    20 It SUCKS!!!!!!!!!!!!!

  9. Unbelievable by sixdotoh · · Score: 0, Offtopic

    This story has been posted for 43 minutes, and only 20 or so comments? man, where is everybody?

    --

    This post was brought to you by the number 584811 and the characters / and .

  10. Binary XML by csbruce · · Score: 0, Offtopic

    Check out BXML for a binary encoding of XML to efficiently carry scientific/array-type data. Feedback appreciated.

  11. Perl is the problem by Anonymous Coward · · Score: -1, Offtopic
    I don't like Perl because it sucks. Why does it suck? It sucks because Larry Wall is not a computer scientist so he designed an ugly mish-mash of a language that is write-only. It is almost impossible to decipher a Perl script 6 months after it has been written.

    What is even more ironic is that Larry fancies himself some sort of "linguist" or "English" major. He went to college and read a couple books on Shakespeare so now he thinks he is some kind of language expert. Well it doesn't work that way.

    Take a look at Perl. Does it look like it was designed by anyone who knew anything about the English language? No, it doesn't. It honest-to-God looks like it was designed by someone who was an Egyptian hieroglyphics major who spent all his free time watching Star Trek -- in other words, someone completely disconnected with reality.

    So you can see why Perl sucks. Not to worry; there are other better languages to use. Try Python or Ruby, or gosh darn it -- Korn Shell. Any of these is better than Perl which should be relegated to set decoration for Raiders of the Lost Ark.