-
-
Notifications
You must be signed in to change notification settings - Fork 421
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Add MASVS to OWASP SKF #127
Comments
Update: we hope to be in touch with the SKF leaders during Global Appsec Amsterdam so we can look at solutions for this item as doing this by hand will be too much work. |
I would like to help out with this effort. Is there any way I can contribute? |
Hi @mpp-anasa , there certainly is:
|
New script for parsing the MSTG/MASVS and generating the MSTG-ID links: https://github.com/OWASP/owasp-masvs/blob/project-integration/tools/generate_mstgid_links.py
|
Hi,
we are at the moment in the process of migrating the MASVS requirements including documentation into the OWASP Security Knowledge Framework (SKF). See here for a description of SKF:
https://www.owasp.org/index.php/OWASP_Security_Knowledge_Framework
Here is the issue blabla1337/skf-flask#461 I created at SKF. Goal is to build the MASVS into SKF by this year. First we need to provide a description and solution to each requirement. Martin Marsicano already created the first draft for it:
https://docs.google.com/document/d/1P5Ab_CKxIFCaHdXZSVj7WY-F0Utk8kK-_tKwB4ExmiE/edit?ts=5b677f32
We should be able to get most of the information out of the MSTG, so if you want to contribute have a look at the test cases in MSTG first so we are also consistent with the description and solution (https://mobile-security.gitbook.io/mobile-security-testing-guide/).
Thanks and cheers,
Sven
The text was updated successfully, but these errors were encountered: