Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

MASTG Refactor Part 2: Techniques, Tools & Reference Apps (by @NowSecure) #2439

Merged
merged 76 commits into from
Sep 29, 2023
Merged

MASTG Refactor Part 2: Techniques, Tools & Reference Apps (by @NowSecure) #2439

merged 76 commits into from
Sep 29, 2023

Conversation

cpholguera
Copy link
Collaborator

@cpholguera cpholguera commented Sep 22, 2023
edited
Loading

After splitting the tests into individual files and their own section on our website, we continue our refactoring process to address other areas of the MASTG.

mastg_refactor_2

  • Add new sections

    • Techniques: now live in the techniques/ folder and are identified now by IDs MASTG-TECH-XXXX
    • Tools: now live in the tools/ folder and are identified now by IDs MASTG-TOOL-XXXX
    • Apps: now live in the apps/ folder and are identified now by IDs MASTG-APP-XXXX

  • Removed chapters 0x05c and 0x05c (content split into individual techniques for the Techniques section and merged to 0x05b and 0x06b for the PDF)

  • External links are now dynamically styled (adding ) and open in a new browser tab e.g. Android Design Principles ↗

  • mkdocs.yml updated

    • "Mobile Security Testing Theory" renamed to "Theory"
    • "MASTG Tests" renamed to "Tests"
    • Added "Techniques", "Tools" and "Apps" to nav
    • Now each section has an index at the top level

  • General cleanup (especially in the src/ folder)
    TODOs

  • Fix broken links

    • see first list of broken links here (search for [:heavy_multiplication_x:] )
    • expect for internal links e.g. to 0x05b (will be done in another PR)

  • Fix broken images

  • Remove figure captions e.g. "Figure 5: Images/Other/crest_logo.jpg" from the PDF

  • Fill empty files in apps/ or tools/ e.g. apps/android/MASTG-APP-0002.md (has metadata only, needs at least one paragraph)

cpholguera and others added 30 commits February 19, 2023 18:53
@cpholguera @TheDauntless
Add iOS tcpdump instructions to 0x06b and related mitmproxy reference…
1c1d2a9 
… to 0x08a (#2326)

* Add iOS tcpdump instructions to 0x06b and related mitmproxy reference to 0x08a

* Add proxy vs pcap context, and pcap conversations summary tip to 0x06b

* Fix linting issues in 0x06b

* Update Document/0x06b-Basic-Security-Testing.md

* Fix trailing space

* Fixed URL

---------

Co-authored-by: Jeroen Beckers <me.githbub@dauntless.be>
@cpholguera
restore techniques and tools
a6d18dd
@cpholguera
Merge branch 'master' of https://github.com/OWASP/owasp-mastg into ma…
23a8db9 
…stg-refactor-1
@cpholguera
cleanup and ensure all leftovers are somewhere
0736633
@cpholguera
Merge branch 'master' of https://github.com/OWASP/owasp-mastg into ma…
71309b7 
…stg-refactor-1
@cpholguera
new structure for tools and techniques
3cd3b44
@cpholguera
add platform to techniques
cf70b05
@cpholguera
Merge branch 'master' of https://github.com/OWASP/owasp-mastg into ma…
2708850 
…stg-refactor-1
@cpholguera
rename techniques
6f937c8
@cpholguera
updated tools refs and flatened techniques
bb825d1
@cpholguera
removing old stuff
20a3a2a
@cpholguera
add some tools as metadata
db49487
@cpholguera
cleanup files
cc369dc
@cpholguera
restructure tools and fix techniques headers
8c9b9f0
@cpholguera
update scripts to parse tools, techniques and apps
6dfaedf
@cpholguera
add mastg apps
eabf5df
@cpholguera
fix links
798417f
@cpholguera
improve code and add external links to frintmatter
bd527cf
@cpholguera
rename tools
ffd038b
@cpholguera
add redirects
f861441
@cpholguera
Merge branch 'master' of https://github.com/OWASP/owasp-mastg into ma…
1f7ac20 
…stg-refactor-1
@cpholguera
add flowdroid, taint analysis and insecureshop
50eef67
@cpholguera
change theory and tests titles
d3280c6
@cpholguera
add index to tools, tech and apps
bad7cff
@cpholguera
remove old or non compliant tools
178cc4e
@cpholguera
improve links text and titles
e5c0a35
@cpholguera
add tests index page
2f19df6
@cpholguera
replace ref and refs in apps and tools for source
8e22ef1
@cpholguera
add available at for source url
53937a8
@cpholguera
fix links titles and format for proper parsing
ef77a56
sushi2k
sushi2k approved these changes Sep 28, 2023
View reviewed changes
Copy link
Collaborator

@sushi2k sushi2k left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I was checking it and it looks good to me. For example I was verifying if the content in Document/0x06c-Reverse-Engineering-and-Tampering.md was spllitted into techniques and it seems you covered it all so nothing got lost.
Also all iOS/Android apps are still in there and the tools and the test cases for iOS/Android are complete.
I wasn’t checking the python scripts in src/scripts though.

@cpholguera
add css style improvements to maximize space
f7e0b66
@cpholguera
MASTG tests index sorted by MASVS groups and IDs
dd85b79
@cpholguera
rm Resources internal section for now
28ac4c1
@cpholguera
update "all platforms" to "Generic" in nav
a2e5f68
@cpholguera
use Section index pages https://squidfunk.github.io/mkdocs-material/s…
1470143 
…etup/setting-up-navigation/#section-index-pages
@cpholguera
move suggested reading to Intro
f8f31ed
@cpholguera
add index for checklist, crackmes, MASTG, MASVS
435b685
@cpholguera
add MASTG ID back to the table
118b8f7
@cpholguera
exclude index.md for calulating Resources
018c44c
@cpholguera
fix internal link processing, fix broken 5b and 6b links, reduce scop…
82b32a0 
…e of external links to MASTG
@cpholguera
add news
a6299a0
@cpholguera
restructure news
3dd211c
@cpholguera
add news + img
1f0682d
@cpholguera
rename apps assigning new IDs
be7ca17
@cpholguera
Merge branch 'master' into mastg-refactor-1
d1d8d69
@cpholguera
update buttons and create overview MASTG buttons
e1b0320
@cpholguera
Merge branch 'mastg-refactor-1' of https://github.com/OWASP/owasp-mastg
7d98fc4 
… into mastg-refactor-1
@cpholguera
fix buttons brekdown
48fd487
@cpholguera
add frida logo
310f860
@cpholguera cpholguera merged commit 312603e into master Sep 29, 2023
5 of 6 checks passed
@cpholguera cpholguera deleted the mastg-refactor-1 branch September 29, 2023 15:49
@cpholguera cpholguera changed the title MASTG Refactor Part 2: Techniques, Tools & Reference Apps MASTG Refactor Part 2: Techniques, Tools & Reference Apps (by @NowSecure) Sep 29, 2023
@cpholguera cpholguera mentioned this pull request Feb 14, 2024
Open
@chagemann chagemann mentioned this pull request Feb 24, 2024
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@sushi2k sushi2k sushi2k approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@cpholguera @sushi2k