Page MenuHomePhabricator

Develop "security testing toolboxes" for manual security reviews, push to wikimedia/security/tooling repo
Open, LowPublic

Description

These are simple "toolboxes" for developers to easily run security-related tooling, mostly to capture low-hanging fruit and provide baseline analyses. These are not in any way to be thought of as capable of performing exhaustive security reviews by themselves. They are in various states of development and I've been using some of them during security reviews. The goal here is to polish these and eventually push to wikimedia/security/tooling. Currently:

Event Timeline

sbassett created this task.Apr 19 2019, 7:27 PM
Restricted Application added a subscriber: Aklapper. · View Herald TranscriptApr 19 2019, 7:27 PM
sbassett triaged this task as Low priority.Apr 19 2019, 7:27 PM
sbassett updated the task description. (Show Details)
sbassett updated the task description. (Show Details)
sbassett updated the task description. (Show Details)Apr 19 2019, 8:12 PM