The Mobile Application Security Testing Guide (MASTG) is a comprehensive manual for mobile app security testing and reverse engineering. It describes the technical processes for verifying the controls listed in the OWASP Mobile Application Security Verification Standard (MASVS).
Some documents have a "References" section with an "Info" subsection. I think "Info" is not really a good section header. First of all, info is short for information, and we should at least write the whole word. Second, the "references" header already indicates that pointers to more information will follow.
I think the references that don't fit under the CWE, MASVS, etc. headers should go directly under the "References" header, without their own additional header. Like this:
References
[#nelenkov] - N. Elenkov, Android Security Internals, No Starch Press, 2014, Chapter 5.
Some documents have a "References" section with an "Info" subsection. I think "Info" is not really a good section header. First of all, info is short for information, and we should at least write the whole word. Second, the "references" header already indicates that pointers to more information will follow.
I think the references that don't fit under the CWE, MASVS, etc. headers should go directly under the "References" header, without their own additional header. Like this:
These sections contain an "Info" header: