Todo List

From SecurityForest

This page is a scratch pad for stuff to fix/implement in the future.
See the Stuff To Do page for stuff you can help with!

ExploitTree

  • Automatic update of the Client Utility when a new version is available. Loni 02:14, 3 Oct 2004 (IST)
  • It should be possible to add a short description for every entry - pointed out by ports
  • Standarization of exploits names, k-otik exploits should not have the date before the exploit name. pointed out by Laramies
  • Standarization of subdirs estructure. pointed out by Laramies
  • Think the better estructure to divide the exploits by software version. pointed out by Laramies
  • Test exploits, if they compile ok. pointed out by Laramies
    • Where does people are suppose to send a comment if the exploit doesn't compile ok? We should create something to show wich exploits have been tested and what are the problems if there is any. Maybe also a send patch possibility to solve problems. - moumouth34
  • Create a good search engine. pointed out by Laramies
  • Add more extensions, example .java, .h. pointed out by Laramies
  • What to do with headers included in an exploit? create a subdir called headers in the root? pointed out by Laramies
  • What to do with exploits tarred or gziped with a bunch of files inside? We let .tar, .gz, .zip in the tree? pointed out by Laramies
  • Add a branch with shellcodes pointed out by Laramies
  • Separate the mail folder in Clients and Servers pointed out by Laramies
  • Allowed extensions should also include .asm pointed out by tie
  • Teach foreigners to use connecting words and pluralization in their sentences. --Djinnx 10:44, 16 Aug 2005 (EDT)
  • The current ExploitTree.pl, xsearch.pl and xsearch2-beta.pl does not work under linux unless use dos2unix to convert it. --impy 12:22, 28 Jul 2006
  • Could the version number of ExploitTree-pl.tar.gz be added to the tar file name for example ExploitTree-pl.0.6.tar.gz, this would be helpfull when creating gentoo ebuilds. --impy 12:26, 28 Jul 2006

SecurityForest in General

  • Are backups/restores being addressed? I don't want to lose SecurityForest over a hardware failure - gotcha
    • Yes. The whole database including all configuration files are backed up OFFSITE every couple of days depending on the amount of updates to the site. (I once backed up the database offsite 3times in one day due to the massive amounts of updates). Loni 02:27, 23 Dec 2004 (IST)
  • Web page Automatic refresh every X interval - pointed out by DeviceZ
  • Fix the vision of SecurityForest Main page when we open it with IE - pointed out by DeviceZ
  • "How about some security related forums ? I think it will be a great addition." (sent to Loni from blad3 whose username in the forest is unknown)
  • Links should open up in new window/tab - pointed out by ports & DeviceZ
    • If anyone knows the syntax of how to do this in wiki - please point it out, thnx - Loni
      • I disagree; please see Dive Into Accessibility (http://diveintoaccessibility.org/day_16_not_opening_new_windows.html) for some reasons. - Zakj
  • Remove bot source from downloads/bots:
    • Thanks Loni - Aenox.
    • "Since March 1, 1989 copyright notice has been optional" - Copyright Myths (http://copylaw.com/new_articles/copy_myths.html)
    • "an original work becomes protected by the copyright laws from the moment it is "fixed in a tangible medium""
  • Please add a section about security research in general at research universities/educational institutions. This would be very helpful especially for grad students and would help increase the popularity of security focus.you can get more info by searching for security information using google. type in the following query at google "security related query" site:.edu
Retrieved from "http://www.securityforest.com/wiki/index.php/Todo_List"
Advertisement