What is the Open XML Advisory Format?

It's an XML format developed to assist researchers during the process of reporting security vulnerabilities to software vendors and writing the corresponding security advisories.

From this XML different outputs can be generated: text, HTML, wiki format, etc. The structured advisory information makes it easier to extract statistics about the vulnerabilities and the reporting process.

Requirements

Download

Documentation

An advisory template and several examples are included in the .zip file.

To generate the output formats (text, HTML, wiki), you can use build <advisory-file> to invoke the XML processor.

Licensing

The Open XML Advisory Format is released under a BSD license (http://creativecommons.org/licenses/BSD/) on behalf of Core Security Technologies.

Description

Title
Open XML Advisory Format
Release date
2010-11-24
License type
BSD 3 clause

Attachments

OXAF-v2.2.zip - Open XML Advisory Format v2.2