RE: Looking for some good sources

["Corio, Jim" <jim.corio () attws com>]

Great place to start....
http://www.owasp.org/index.jsp

Jimmy Corio, CISSP
Sr. Security Analyst (Vulnerability Mitigation)

-----Original Message-----
From: jeffrey rivero [mailto:jeffr76 () yahoo com] 
Sent: Wednesday, September 29, 2004 5:49 PM
To: security-basics () securityfocus com
Subject: Looking for some good sources


Hello all
we just got a contract to do a web application pen test.
being that we usually are responsible for the the network side of 
things. i was looking for some kind of website security audit proposal 
that i could use as a template/guide (all tho these customers have 
specific items that they want tested). i could just use my network 
proposal but would like to create a new on.
any one have a good source
J