Originally I thought it would be a good idea to create a tag inside my own web site about ways that any user in a domain can create and identify findings inside an organization without ever having to exploit things. Then I remembered how often I change my website and modify things there. I want this site to stand the test of time and include easy ways for users to help organizations to be more secure.
This site will be about pentest or other security related findings that anyone on a domain can identify. It will show how to find the security identifiers, links to reference to find out more as well as fixes. I want to tie this in to my Common Findings Data Base as well, but this site will be written more in the point of view of the identifier, rather than afterwards.
It is ok that this site probably won't grow very large, it's all about being proactive, and if there are only a few findings that you can be proactive about, then that is just fine, lets fix those.