OWASP - User contributions [en]

OWASP Virtual Village Project

2017-09-20T16:38:48Z

H4x0rdi3: /* Project Chapter */

=Main=

Deliverable:
To provide a stable platform of multiple operating systems, Desktop / Servers for Breakers, Defenders and Makers. This will allow them to have a platform where they can build securely and with confidence that the infrastructure will provide them with what they need.

<div style="width:100%;height:160px;border:0,margin:0;overflow: hidden;">[[File:OWASP_Project_Header.jpg|link=]]</div>

{| style="padding: 0;margin:0;margin-top:10px;text-align:left;" |-
| valign="top" style="border-right: 1px dotted gray;padding-right:25px;" |

==OWASP Virtual Village Project ==




==Description==

OWASP Virtual Village has been moved to github.

https://github.com/OWASP/VirtualVillage

OWASP Virtual Village provides registered OWASP Members and their approved projects with a virtual machine environment that they can run their projects on for testing purposes. Power and Pipe is donated by [http://www.nyi.net New York Internet]

{|
|-
|{{#ev:youtube|FCiqIf5h4Mc}}
|}


==Licensing==

TBD


| valign="top" style="padding-left:25px;width:200px;border-right: 1px dotted gray;padding-right:25px;" |

== Project Resources ==


[https://docs.google.com/presentation/d/1zs9LfLBL2BjEYSCqMR3qbmrPNA48xi99SR3dUhSg-nY/edit?usp=sharing Slide Overview]

Interview
== Project Chapter ==
[http://www.meetup.com/OWASP-NYC/ NYC Metro]

== Project Leader ==


Project leader's name:

[https://github.com/evinhernandez Evin Hernandez]

[https://github.com/brennantom Tom Brennan]

Dan D'Amelio

Bhavin Shah

== Related Projects ==

N/A

==Classifications==

{| width="200" cellpadding="2"
|-
| colspan="2" align="center" | [[File:Project_Type_Files_TOOL.jpg|link=https://www.owasp.org/index.php/Category:OWASP_Tool]]
|-
| rowspan="2" align="center" valign="top" width="50%" | [[File:Owasp-incubator-trans-85.png|link=https://www.owasp.org/index.php/OWASP_Project_Stages#tab=Incubator_Projects|Incubator Project]]
| align="center" valign="top" width="50%" | [[File:Owasp-builders-small.png|link=Builders]]
|-
| align="center" valign="top" width="50%" | [[File:Owasp-defenders-small.png|link=Defenders]]
|-
| colspan="2" align="center" |
|}

| valign="top" style="padding-left:25px;width:200px;" |

== News and Events ==

20-Sept AppSecUSA Project Summit

[https://www.nyi.net/media/more/nyi_is_home_to_the_first_owasp_virtual_lab 3 June 2015 Press Release]

[https://github.com/evinhernandez/VirtualVillage Virtual Village Github]

[https://soundcloud.com/owasp-podcast/less-than-10-minutes-series-virtual-village-project '''Virtual Village PodCast''': Less than 10 Minutes series.]
|
|}

=FAQs=




==How can I participate in your project?==
All you have to do is make the Project Leader's aware of your available time to contribute to the project. It is also important to let the Leader's know how you would like to contribute and pitch in to help the project meet it's goals and milestones. There are many different ways you can contribute to an OWASP Project, but communication with the leads is key.

==If I am not a programmer can I participate in your project?==
Yes, you can certainly participate in the project if you are not a programmer or technical. The project needs different skills and expertise and different times during its development. Currently, we are looking for researchers, writers, graphic designers, and a project administrator. See the Road Map and Getting Involved tab for more details.

= Acknowledgements =
==Contributors==




The first contributors to the project were:
* [https://www.nyi.net/nyi-home-to-first-owasp-virtual-lab/ New York Internet]
* [http://www.nestedx2.com/#!about/c13zq Evin Hernandez]
* [https://www.owasp.org/index.php/User:Brennan Tom Brennan]
* [http://www.njit.edu/ New Jersey Institute of Technology (NJIT)]
*DevPatel
*Komal Patel
* Urvashi Patel
* Robin Reyes (PM)

==Project Sponsor==
Virtual Village is sponsored by [http://www.proactiverisk.com ProactiveRISK Inc.].

[[File:Proactiverisk_logo_v2.jpg | link=http://www.proactiverisk.com]]

Power and Pipe provided by New York Internet
[[File:Nyi logo large.jpg|left|thumb|172x172px]]

= Road Map and Getting Involved =




==Roadmap==

Project Roadmap: consist of A dev / test environment initially taking request via email. Eventually users with be able to sign and and request specific resources correlated to a specific project.

As of May, 2016, the highest priorities for the next 6 months are:

* Obtain software
* Configure and install Software
* Provide access to owasp members and host a few owasp projects.


==Getting Involved==
Involvement in the development and promotion of Virtual Village is actively encouraged!
You do not have to be a security expert or a programmer to contribute.
Some of the ways you can help are as follows:

===Coding===
We could implement some of the later items on the roadmap sooner if someone wanted to help out with unit or automated regression tests
===Localization===
Are you fluent in another language? Can you help translate the text strings in the Tool Project Template into that language?

===Testing===
Do you have a flair for finding bugs in software? We want to product a high quality product, so any help with Quality Assurance would be greatly appreciated. Let us know if you can offer your help.
===Feedback===
Please use the [https://lists.owasp.org/mailman/listinfo/OWASP_Tool_Project_Template Tool Project Template project mailing list] for feedback about:
<ul>
<li>What do like?</li>
<li>What don't you like?</li>
<li>What features would you like to see prioritized on the roadmap?</li>
</ul>

=Minimum Viable Product=



The Virtual Village Project will provide a platform for members to use and host lab, incubator and flagship projects.

__NOTOC__ <headertabs></headertabs>

[[Category:OWASP Project]]
[[Category:OWASP_Builders]]
[[Category:OWASP_Defenders]]
[[Category:OWASP_Tool]]

OWASP Virtual Village Project

2017-09-20T16:30:31Z

H4x0rdi3: /* Classifications */

=Main=

Deliverable:
To provide a stable platform of multiple operating systems, Desktop / Servers for Breakers, Defenders and Makers. This will allow them to have a platform where they can build securely and with confidence that the infrastructure will provide them with what they need.

<div style="width:100%;height:160px;border:0,margin:0;overflow: hidden;">[[File:OWASP_Project_Header.jpg|link=]]</div>

{| style="padding: 0;margin:0;margin-top:10px;text-align:left;" |-
| valign="top" style="border-right: 1px dotted gray;padding-right:25px;" |

==OWASP Virtual Village Project ==




==Description==

OWASP Virtual Village has been moved to github.

https://github.com/OWASP/VirtualVillage

OWASP Virtual Village provides registered OWASP Members and their approved projects with a virtual machine environment that they can run their projects on for testing purposes. Power and Pipe is donated by [http://www.nyi.net New York Internet]

{|
|-
|{{#ev:youtube|FCiqIf5h4Mc}}
|}


==Licensing==

TBD


| valign="top" style="padding-left:25px;width:200px;border-right: 1px dotted gray;padding-right:25px;" |

== Project Resources ==


[https://docs.google.com/presentation/d/1zs9LfLBL2BjEYSCqMR3qbmrPNA48xi99SR3dUhSg-nY/edit?usp=sharing Slide Overview]

Interview
== Project Chapter ==
[http://www.meetup.com/OWASP-NYC/ NYC Metro]

== Project Leader ==


Project leader's name:

Evin Hernandez

[https://github.com/brennantom Tom Brennan]

Dan D'Amelio

Bhavin Shah

== Related Projects ==

N/A

==Classifications==

{| width="200" cellpadding="2"
|-
| colspan="2" align="center" | [[File:Project_Type_Files_TOOL.jpg|link=https://www.owasp.org/index.php/Category:OWASP_Tool]]
|-
| rowspan="2" align="center" valign="top" width="50%" | [[File:Owasp-incubator-trans-85.png|link=https://www.owasp.org/index.php/OWASP_Project_Stages#tab=Incubator_Projects|Incubator Project]]
| align="center" valign="top" width="50%" | [[File:Owasp-builders-small.png|link=Builders]]
|-
| align="center" valign="top" width="50%" | [[File:Owasp-defenders-small.png|link=Defenders]]
|-
| colspan="2" align="center" |
|}

| valign="top" style="padding-left:25px;width:200px;" |

== News and Events ==

20-Sept AppSecUSA Project Summit

[https://www.nyi.net/media/more/nyi_is_home_to_the_first_owasp_virtual_lab 3 June 2015 Press Release]

[https://github.com/evinhernandez/VirtualVillage Virtual Village Github]

[https://soundcloud.com/owasp-podcast/less-than-10-minutes-series-virtual-village-project '''Virtual Village PodCast''': Less than 10 Minutes series.]
|
|}

=FAQs=




==How can I participate in your project?==
All you have to do is make the Project Leader's aware of your available time to contribute to the project. It is also important to let the Leader's know how you would like to contribute and pitch in to help the project meet it's goals and milestones. There are many different ways you can contribute to an OWASP Project, but communication with the leads is key.

==If I am not a programmer can I participate in your project?==
Yes, you can certainly participate in the project if you are not a programmer or technical. The project needs different skills and expertise and different times during its development. Currently, we are looking for researchers, writers, graphic designers, and a project administrator. See the Road Map and Getting Involved tab for more details.

= Acknowledgements =
==Contributors==




The first contributors to the project were:
* [https://www.nyi.net/nyi-home-to-first-owasp-virtual-lab/ New York Internet]
* [http://www.nestedx2.com/#!about/c13zq Evin Hernandez]
* [https://www.owasp.org/index.php/User:Brennan Tom Brennan]
* [http://www.njit.edu/ New Jersey Institute of Technology (NJIT)]
*DevPatel
*Komal Patel
* Urvashi Patel
* Robin Reyes (PM)

==Project Sponsor==
Virtual Village is sponsored by [http://www.proactiverisk.com ProactiveRISK Inc.].

[[File:Proactiverisk_logo_v2.jpg | link=http://www.proactiverisk.com]]

Power and Pipe provided by New York Internet
[[File:Nyi logo large.jpg|left|thumb|172x172px]]

= Road Map and Getting Involved =




==Roadmap==

Project Roadmap: consist of A dev / test environment initially taking request via email. Eventually users with be able to sign and and request specific resources correlated to a specific project.

As of May, 2016, the highest priorities for the next 6 months are:

* Obtain software
* Configure and install Software
* Provide access to owasp members and host a few owasp projects.


==Getting Involved==
Involvement in the development and promotion of Virtual Village is actively encouraged!
You do not have to be a security expert or a programmer to contribute.
Some of the ways you can help are as follows:

===Coding===
We could implement some of the later items on the roadmap sooner if someone wanted to help out with unit or automated regression tests
===Localization===
Are you fluent in another language? Can you help translate the text strings in the Tool Project Template into that language?

===Testing===
Do you have a flair for finding bugs in software? We want to product a high quality product, so any help with Quality Assurance would be greatly appreciated. Let us know if you can offer your help.
===Feedback===
Please use the [https://lists.owasp.org/mailman/listinfo/OWASP_Tool_Project_Template Tool Project Template project mailing list] for feedback about:
<ul>
<li>What do like?</li>
<li>What don't you like?</li>
<li>What features would you like to see prioritized on the roadmap?</li>
</ul>

=Minimum Viable Product=



The Virtual Village Project will provide a platform for members to use and host lab, incubator and flagship projects.

__NOTOC__ <headertabs></headertabs>

[[Category:OWASP Project]]
[[Category:OWASP_Builders]]
[[Category:OWASP_Defenders]]
[[Category:OWASP_Tool]]

OWASP Virtual Village Project

2017-04-03T16:20:47Z

H4x0rdi3: /* Classifications */

=Main=

Deliverable:
To provide a stable platform of multiple operating systems, Desktop / Servers for Breakers, Defenders and Makers. This will allow them to have a platform where they can build securely and with confidence that the infrastructure will provide them with what they need.

<div style="width:100%;height:160px;border:0,margin:0;overflow: hidden;">[[File:OWASP_Project_Header.jpg|link=]]</div>

{| style="padding: 0;margin:0;margin-top:10px;text-align:left;" |-
| valign="top" style="border-right: 1px dotted gray;padding-right:25px;" |

==OWASP Virtual Village Project ==




==Description==

Owasp Virtual Village has been moved to github.

https://github.com/evinhernandez/VirtualVillage

Owasp Virtual Lab will provide users with access to numerous operating systems Desktop as well as Servers. They will be able to create custom apps for other owasp projects they will also be able to request test environments , or honey pots , etc.

{|
|-
|{{#ev:youtube|FCiqIf5h4Mc}}
|}




==Licensing==

TBD


| valign="top" style="padding-left:25px;width:200px;border-right: 1px dotted gray;padding-right:25px;" |

== Project Resources ==


== Project Chapter ==
[http://www.meetup.com/OWASP-NYC/ NYC Metro]

== Project Leader ==


Project leader's name:

Evin Hernandez

Tom Brennan

Dan D'Amelio

Vitaliy Dubinskiy

== Related Projects ==

N/A

==Classifications==

{| width="200" cellpadding="2"
|-
| colspan="2" align="center" | [[File:Project_Type_Files_TOOL.jpg|link=https://www.owasp.org/index.php/Category:OWASP_Tool]]
|-
| rowspan="2" align="center" valign="top" width="50%" | [[File:Owasp-incubator-trans-85.png|link=https://www.owasp.org/index.php/OWASP_Project_Stages#tab=Incubator_Projects|Incubator Project]]
| align="center" valign="top" width="50%" | [[File:Owasp-builders-small.png|link=Builders]]
|-
| align="center" valign="top" width="50%" | [[File:Owasp-defenders-small.png|link=Defenders]]
|-
| colspan="2" align="center" |
|}

| valign="top" style="padding-left:25px;width:200px;" |

== News and Events ==

[https://www.nyi.net/media/more/nyi_is_home_to_the_first_owasp_virtual_lab 3 June 2015 Press Release]

[https://github.com/evinhernandez/VirtualVillage Virtual Village has move to Github]


|}

=FAQs=




==How can I participate in your project?==
All you have to do is make the Project Leader's aware of your available time to contribute to the project. It is also important to let the Leader's know how you would like to contribute and pitch in to help the project meet it's goals and milestones. There are many different ways you can contribute to an OWASP Project, but communication with the leads is key.

==If I am not a programmer can I participate in your project?==
Yes, you can certainly participate in the project if you are not a programmer or technical. The project needs different skills and expertise and different times during its development. Currently, we are looking for researchers, writers, graphic designers, and a project administrator. See the Road Map and Getting Involved tab for more details.

= Acknowledgements =
==Contributors==




The first contributors to the project were:
* [http://www.nestedx2.com/#!about/c13zq Evin Hernandez]
* [https://www.owasp.org/index.php/User:Brennan Tom Brennan]
* [http://www.njit.edu/ New Jersey Institute of Technology (NJIT)]
*DevPatel
*Komal Patel
* Urvashi Patel
* Robin Reyes (PM)

= Road Map and Getting Involved =




==Roadmap==

Project Roadmap: consist of A dev / test environment initially taking request via email. Eventually users with be able to sign and and request specific resources correlated to a specific project.

As of May, 2016, the highest priorities for the next 6 months are:

* Obtain software
* Configure and install Software
* Provide access to owasp members and host a few owasp projects.


==Getting Involved==
Involvement in the development and promotion of Virtual Village is actively encouraged!
You do not have to be a security expert or a programmer to contribute.
Some of the ways you can help are as follows:

===Coding===
We could implement some of the later items on the roadmap sooner if someone wanted to help out with unit or automated regression tests
===Localization===
Are you fluent in another language? Can you help translate the text strings in the Tool Project Template into that language?

===Testing===
Do you have a flair for finding bugs in software? We want to product a high quality product, so any help with Quality Assurance would be greatly appreciated. Let us know if you can offer your help.
===Feedback===
Please use the [https://lists.owasp.org/mailman/listinfo/OWASP_Tool_Project_Template Tool Project Template project mailing list] for feedback about:
<ul>
<li>What do like?</li>
<li>What don't you like?</li>
<li>What features would you like to see prioritized on the roadmap?</li>
</ul>

=Minimum Viable Product=



The Virtual Village Project will provide a platform for members to use and host lab, incubator and flagship projects.

=Project About=



{{:Projects/OWASP_Example_Project_About_Page}}

__NOTOC__ <headertabs></headertabs>

[[Category:OWASP Project]]
[[Category:OWASP_Builders]]
[[Category:OWASP_Defenders]]
[[Category:OWASP_Tool]]

OWASP Virtual Village Project

2017-02-23T23:31:19Z

H4x0rdi3: /* Description */

=Main=

Deliverable:
To provide a stable platform of multiple operating systems, Desktop / Servers for Breakers, Defenders and Makers. This will allow them to have a platform where they can build securely and with confidence that the infrastructure will provide them with what they need.

<div style="width:100%;height:160px;border:0,margin:0;overflow: hidden;">[[File:OWASP_Project_Header.jpg|link=]]</div>

{| style="padding: 0;margin:0;margin-top:10px;text-align:left;" |-
| valign="top" style="border-right: 1px dotted gray;padding-right:25px;" |

==OWASP Virtual Village Project ==




==Description==

Owasp Virtual Lab will provide users with access to numerous operating systems Desktop as well as Servers. They will be able to create custom apps for other owasp projects they will also be able to request test environments , or honey pots , etc.

instead of the Contributor having to change for the data center, we’re adjusting the data center for the contributor. In doing so, we have a few imperatives:
-Build technologies that span the app lifecycle, from the developer’s laptop to the production stack
-Help teams manage Cloud-Native apps while maintaining security, performance, and ease-of-use
-Participate in the community by building and interfacing with open systems and standards

{|
|-
{{#ev:youtube|FCiqIf5h4Mc}}
|}





==Licensing==

TBD



| valign="top" style="padding-left:25px;width:200px;border-right: 1px dotted gray;padding-right:25px;" |

== Project Resources ==


https://trello.com/b/kyx0xHcu

== Project Chapter ==
[http://www.meetup.com/OWASP-NYC/ NYC Metro]

== Project Leader ==


Project leader's name:

Evin Hernandez

Tom Brennan

Dan D'Amelio

Vitaliy Dubinskiy

== Related Projects ==

N/A

==Classifications==

{| width="200" cellpadding="2"
|-
| colspan="2" align="center" | [[File:Project_Type_Files_TOOL.jpg|link=https://www.owasp.org/index.php/Category:OWASP_Tool]]
|-
| align="center" valign="top" width="50%" rowspan="2"| [[File:Owasp-incubator-trans-85.png|link=https://www.owasp.org/index.php/OWASP_Project_Stages#tab=Incubator_Projects|Incubator Project]]
| align="center" valign="top" width="50%"| [[File:Owasp-builders-small.png|link=Builders]]
|-
| align="center" valign="top" width="50%"| [[File:Owasp-defenders-small.png|link=Defenders]]
|-
| colspan="2" align="center" |
|}

| valign="top" style="padding-left:25px;width:200px;" |

== News and Events ==

[https://www.nyi.net/media/more/nyi_is_home_to_the_first_owasp_virtual_lab 3 June 2015 Press Release]




|}

=FAQs=




==How can I participate in your project?==
All you have to do is make the Project Leader's aware of your available time to contribute to the project. It is also important to let the Leader's know how you would like to contribute and pitch in to help the project meet it's goals and milestones. There are many different ways you can contribute to an OWASP Project, but communication with the leads is key.

==If I am not a programmer can I participate in your project?==
Yes, you can certainly participate in the project if you are not a programmer or technical. The project needs different skills and expertise and different times during its development. Currently, we are looking for researchers, writers, graphic designers, and a project administrator. See the Road Map and Getting Involved tab for more details.

= Acknowledgements =
==Contributors==




The first contributors to the project were:
* [http://www.nestedx2.com/#!about/c13zq Evin Hernandez ]
* [https://www.owasp.org/index.php/User:Brennan Tom Brennan]
* [http://www.njit.edu/ New Jersey Institute of Technology (NJIT)]
*DevPatel
*Komal Patel
* Urvashi Patel
* Robin Reyes (PM)

= Road Map and Getting Involved =




==Roadmap==

Project Roadmap: consist of A dev / test environment initially taking request via email. Eventually users with be able to sign and and request specific resources correlated to a specific project.

As of May, 2016, the highest priorities for the next 6 months are:

* Obtain software
* Configure and install Software
* Provide access to owasp members and host a few owasp projects.


==Getting Involved==
Involvement in the development and promotion of Virtual Village is actively encouraged!
You do not have to be a security expert or a programmer to contribute.
Some of the ways you can help are as follows:

===Coding===
We could implement some of the later items on the roadmap sooner if someone wanted to help out with unit or automated regression tests
===Localization===
Are you fluent in another language? Can you help translate the text strings in the Tool Project Template into that language?

===Testing===
Do you have a flair for finding bugs in software? We want to product a high quality product, so any help with Quality Assurance would be greatly appreciated. Let us know if you can offer your help.
===Feedback===
Please use the [https://lists.owasp.org/mailman/listinfo/OWASP_Tool_Project_Template Tool Project Template project mailing list] for feedback about:
<ul>
<li>What do like?</li>
<li>What don't you like?</li>
<li>What features would you like to see prioritized on the roadmap?</li>
</ul>

=Minimum Viable Product=



The Virtual Village Project will provide a platform for members to use and host lab, incubator and flagship projects.

=Project About=



{{:Projects/OWASP_Example_Project_About_Page}}

__NOTOC__ <headertabs />

[[Category:OWASP Project]] [[Category:OWASP_Builders]] [[Category:OWASP_Defenders]] [[Category:OWASP_Tool]]

OWASP Virtual Village Project

2016-05-04T00:20:26Z

H4x0rdi3: /* Minimum Viable Product */

=Main=

Deliverable:
To provide a stable platform of multiple operating systems, Desktop / Servers for Breakers, Defenders and Makers. This will allow them to have a platform where they can build securely and with confidence that the infrastructure will provide them with what they need.

<div style="width:100%;height:160px;border:0,margin:0;overflow: hidden;">[[File:OWASP_Project_Header.jpg|link=]]</div>

{| style="padding: 0;margin:0;margin-top:10px;text-align:left;" |-
| valign="top" style="border-right: 1px dotted gray;padding-right:25px;" |

==OWASP Virtual Village Project ==




==Description==

Owasp Virtual Lab will provide users with access to numerous operating systems Desktop as well as Servers. They will be able to create custom apps for other owasp projects they will also be able to request test environments , or honey pots , etc.

{|
|-
{{#ev:youtube|FCiqIf5h4Mc}}
|}





==Licensing==

TBD



| valign="top" style="padding-left:25px;width:200px;border-right: 1px dotted gray;padding-right:25px;" |

== Project Resources ==


https://trello.com/b/kyx0xHcu

== Project Chapter ==
[http://www.meetup.com/OWASP-NYC/ NYC Metro]

== Project Leader ==


Project leader's name:

Evin Hernandez

Tom Brennan

== Related Projects ==

N/A

==Classifications==

{| width="200" cellpadding="2"
|-
| colspan="2" align="center" | [[File:Project_Type_Files_TOOL.jpg|link=https://www.owasp.org/index.php/Category:OWASP_Tool]]
|-
| align="center" valign="top" width="50%" rowspan="2"| [[File:Owasp-incubator-trans-85.png|link=https://www.owasp.org/index.php/OWASP_Project_Stages#tab=Incubator_Projects|Incubator Project]]
| align="center" valign="top" width="50%"| [[File:Owasp-builders-small.png|link=Builders]]
|-
| align="center" valign="top" width="50%"| [[File:Owasp-defenders-small.png|link=Defenders]]
|-
| colspan="2" align="center" |
|}

| valign="top" style="padding-left:25px;width:200px;" |

== News and Events ==

[https://www.nyi.net/media/more/nyi_is_home_to_the_first_owasp_virtual_lab 3 June 2015 Press Release]




|}

=FAQs=




==How can I participate in your project?==
All you have to do is make the Project Leader's aware of your available time to contribute to the project. It is also important to let the Leader's know how you would like to contribute and pitch in to help the project meet it's goals and milestones. There are many different ways you can contribute to an OWASP Project, but communication with the leads is key.

==If I am not a programmer can I participate in your project?==
Yes, you can certainly participate in the project if you are not a programmer or technical. The project needs different skills and expertise and different times during its development. Currently, we are looking for researchers, writers, graphic designers, and a project administrator. See the Road Map and Getting Involved tab for more details.

= Acknowledgements =
==Contributors==




The first contributors to the project were:
* [http://www.nestedx2.com/#!about/c13zq Evin Hernandez ]
* [https://www.owasp.org/index.php/User:Brennan Tom Brennan]
* [http://www.njit.edu/ New Jersey Institute of Technology (NJIT)]
*DevPatel
*Komal Patel
* Urvashi Patel
* Robin Reyes (PM)

= Road Map and Getting Involved =




==Roadmap==

Project Roadmap: consist of A dev / test environment initially taking request via email. Eventually users with be able to sign and and request specific resources correlated to a specific project.

As of May, 2016, the highest priorities for the next 6 months are:

* Obtain software
* Configure and install Software
* Provide access to owasp members and host a few owasp projects.


==Getting Involved==
Involvement in the development and promotion of Virtual Village is actively encouraged!
You do not have to be a security expert or a programmer to contribute.
Some of the ways you can help are as follows:

===Coding===
We could implement some of the later items on the roadmap sooner if someone wanted to help out with unit or automated regression tests
===Localization===
Are you fluent in another language? Can you help translate the text strings in the Tool Project Template into that language?

===Testing===
Do you have a flair for finding bugs in software? We want to product a high quality product, so any help with Quality Assurance would be greatly appreciated. Let us know if you can offer your help.
===Feedback===
Please use the [https://lists.owasp.org/mailman/listinfo/OWASP_Tool_Project_Template Tool Project Template project mailing list] for feedback about:
<ul>
<li>What do like?</li>
<li>What don't you like?</li>
<li>What features would you like to see prioritized on the roadmap?</li>
</ul>

=Minimum Viable Product=



The Virtual Village Project will provide a platform for members to use and host lab, incubator and flagship projects.

=Project About=



{{:Projects/OWASP_Example_Project_About_Page}}

__NOTOC__ <headertabs />

[[Category:OWASP Project]] [[Category:OWASP_Builders]] [[Category:OWASP_Defenders]] [[Category:OWASP_Tool]]

OWASP Virtual Village Project

2016-05-04T00:00:26Z

H4x0rdi3: /* Project Resources */

=Main=

Deliverable:
To provide a stable platform of multiple operating systems, Desktop / Servers for Breakers, Defenders and Makers. This will allow them to have a platform where they can build securely and with confidence that the infrastructure will provide them with what they need.

<div style="width:100%;height:160px;border:0,margin:0;overflow: hidden;">[[File:OWASP_Project_Header.jpg|link=]]</div>

{| style="padding: 0;margin:0;margin-top:10px;text-align:left;" |-
| valign="top" style="border-right: 1px dotted gray;padding-right:25px;" |

==OWASP Virtual Village Project ==




==Description==

Owasp Virtual Lab will provide users with access to numerous operating systems Desktop as well as Servers. They will be able to create custom apps for other owasp projects they will also be able to request test environments , or honey pots , etc.

{|
|-
{{#ev:youtube|FCiqIf5h4Mc}}
|}





==Licensing==

TBD



| valign="top" style="padding-left:25px;width:200px;border-right: 1px dotted gray;padding-right:25px;" |

== Project Resources ==


https://trello.com/b/kyx0xHcu

== Project Chapter ==
[http://www.meetup.com/OWASP-NYC/ NYC Metro]

== Project Leader ==


Project leader's name:

Evin Hernandez

Tom Brennan

== Related Projects ==

N/A

==Classifications==

{| width="200" cellpadding="2"
|-
| colspan="2" align="center" | [[File:Project_Type_Files_TOOL.jpg|link=https://www.owasp.org/index.php/Category:OWASP_Tool]]
|-
| align="center" valign="top" width="50%" rowspan="2"| [[File:Owasp-incubator-trans-85.png|link=https://www.owasp.org/index.php/OWASP_Project_Stages#tab=Incubator_Projects|Incubator Project]]
| align="center" valign="top" width="50%"| [[File:Owasp-builders-small.png|link=Builders]]
|-
| align="center" valign="top" width="50%"| [[File:Owasp-defenders-small.png|link=Defenders]]
|-
| colspan="2" align="center" |
|}

| valign="top" style="padding-left:25px;width:200px;" |

== News and Events ==

[https://www.nyi.net/media/more/nyi_is_home_to_the_first_owasp_virtual_lab 3 June 2015 Press Release]




|}

=FAQs=




==How can I participate in your project?==
All you have to do is make the Project Leader's aware of your available time to contribute to the project. It is also important to let the Leader's know how you would like to contribute and pitch in to help the project meet it's goals and milestones. There are many different ways you can contribute to an OWASP Project, but communication with the leads is key.

==If I am not a programmer can I participate in your project?==
Yes, you can certainly participate in the project if you are not a programmer or technical. The project needs different skills and expertise and different times during its development. Currently, we are looking for researchers, writers, graphic designers, and a project administrator. See the Road Map and Getting Involved tab for more details.

= Acknowledgements =
==Contributors==




The first contributors to the project were:
* [http://www.nestedx2.com/#!about/c13zq Evin Hernandez ]
* [https://www.owasp.org/index.php/User:Brennan Tom Brennan]
* [http://www.njit.edu/ New Jersey Institute of Technology (NJIT)]
*DevPatel
*Komal Patel
* Urvashi Patel
* Robin Reyes (PM)

= Road Map and Getting Involved =




==Roadmap==

Project Roadmap: consist of A dev / test environment initially taking request via email. Eventually users with be able to sign and and request specific resources correlated to a specific project.

As of May, 2016, the highest priorities for the next 6 months are:

* Obtain software
* Configure and install Software
* Provide access to owasp members and host a few owasp projects.


==Getting Involved==
Involvement in the development and promotion of Virtual Village is actively encouraged!
You do not have to be a security expert or a programmer to contribute.
Some of the ways you can help are as follows:

===Coding===
We could implement some of the later items on the roadmap sooner if someone wanted to help out with unit or automated regression tests
===Localization===
Are you fluent in another language? Can you help translate the text strings in the Tool Project Template into that language?

===Testing===
Do you have a flair for finding bugs in software? We want to product a high quality product, so any help with Quality Assurance would be greatly appreciated. Let us know if you can offer your help.
===Feedback===
Please use the [https://lists.owasp.org/mailman/listinfo/OWASP_Tool_Project_Template Tool Project Template project mailing list] for feedback about:
<ul>
<li>What do like?</li>
<li>What don't you like?</li>
<li>What features would you like to see prioritized on the roadmap?</li>
</ul>

=Minimum Viable Product=



The Virtual Village Project will provide a platform for members to use for lab, incubator and flagship projects.

=Project About=



{{:Projects/OWASP_Example_Project_About_Page}}

__NOTOC__ <headertabs />

[[Category:OWASP Project]] [[Category:OWASP_Builders]] [[Category:OWASP_Defenders]] [[Category:OWASP_Tool]]

Category:OWASP Project

2016-05-03T23:52:20Z

H4x0rdi3: /* Tools [Reviewed last: May 2015 - Health Check February 2016] */

__NOTOC__
{|
|-
! width="700" align="center" | 
! width="500" align="center" | 
|-
|
| align="right" |

|}

<div style="width:100%;height:160px;border:0,margin:0;overflow: hidden;">[[File:OWASP_Project_Header.jpg|link=]]</div>
= Welcome =
{| style="width: 100%;"
|-
| style="width: 100%; color: rgb(0, 0, 0);" |
{| style="border: 0px solid ; background: transparent none repeat scroll 0% 0%; width: 100%; -moz-background-clip: border; -moz-background-origin: padding; -moz-background-inline-policy: continuous;"
|-
| style="width: 95%; color: rgb(0, 0, 0);" |


=== Welcome to the OWASP Global Projects Page ===

(The Projects pages are constantly being updated. Some pages may contain outdated information. You can help OWASP to keep these pages current by visiting [https://www.owasp.org/index.php/Category:FIXME FixME]) Please contact Claudia Aviles Casanovas with questions using the [https://www.tfaforms.com/308703| contact us form]

An OWASP project is a collection of related tasks that have a defined roadmap and team members. OWASP project leaders are responsible for defining the vision, roadmap, and tasks for the project. The project leader also promotes the project and builds the team. OWASP currently has ''''''over ''''''89'''''' active projects'''''', and new project applications are submitted every week.

This is one of the most popular divisions of OWASP as it gives members an opportunity to freely test theories and ideas with the professional advice and support of the OWASP community. Every project has an associated mail list. You can view all the lists, examine their archives, and subscribe to any project by visiting the [http://lists.owasp.org/mailman/listinfo OWASP Project Mailing Lists] page. A summary of recent project announcements is available on the [[OWASP Updates]] page.

Download the '''[[Media:PROJECT_LEADER-HANDBOOK_2014.pdf|OWASP Project Handbook 2014]]'''
- 2016 Project handbook updates are in progres, [https://www.tfaforms.com/308703 Contact US] to join the collobration team and improve the process

'''[[OWASP_2014_Project_Handbook|OWASP Project Handbook Wiki 2014]]'''

'''[[Project_Online_Resources|Project Online Resources]]'''

=== Who Should Start an OWASP Project? ===

*Application Developers.
*Software Architects.
* Information Security Authors.
*Those who would like the support of a world wide professional community to develop or test an idea.
*Anyone wishing to take advantage of the professional body of knowledge OWASP has to offer.

=== Contact Us===

If you have any questions, please do not hesitate to [http://owasp4.owasp.org/contactus.html Contact Us] by using the form provided here. Please allow five working days for your question or comment to be answered. This is due to the large amount of queries the foundation staff receive every day. We thank you for your patience.

=== Fund Details ===

* [https://www.owasp.org/images/1/11/20160407_-_US_Project_Funds.pdf Project Transactions - US (Amount shown in USD)]
* [https://www.owasp.org/images/7/7b/20160407_-_EU_Project_Funds.pdf Project Transactions - EU (Amount shown in Euros)]

=== Please see additional OWASP PROJECT FUNDING for 2016 ===

https://www.owasp.org/index.php/OWASP_Board_Votes

=== OWASP Project Inventory ===

All OWASP tools, document, and code library projects are organized into the following [[OWASP_Project_Stages|categories:]]

* '''[[OWASP_Project_Inventory#Flagship_Projects|Flagship Projects:]]''' The OWASP Flagship designation is given to projects that have demonstrated strategic value to OWASP and application security as a whole.

* '''[[OWASP_Project_Inventory#Labs_Projects|Lab Projects:]]''' OWASP Labs projects represent projects that have produced an OWASP reviewed deliverable of value.

* '''[[OWASP_Project_Inventory#Incubator_Projects|Incubator Projects:]]''' OWASP Incubator projects represent the experimental playground where projects are still being fleshed out, ideas are still being proven, and development is still underway.

=== Social Media ===

We recommend using the links below to find our official OWASP social media channels. These are a great way to keep in touch with the different initiatives going on at OWASP throughout the world. They are all updated regularly by chapter leaders, project leaders, the OWASP Board Members, and our OWASP Staff. If you have any questions or concerns about any of these accounts, please drop us a line using our [http://www.tfaforms.com/308703 "Contact Us"] form found above.

[[Image:Blogger-32x32.png|32px|link=http://owasp.blogspot.co.uk/]] [[Image:Twitter-32x32.png|32px|link=https://twitter.com/OWASP]] [[Image:Facebook-32x32.png|32px|link=https://www.facebook.com/groups/172892372831444/]] [[Image:Linkedin-32x32.png|32px|link=http://www.linkedin.com/groups/Global-OWASP-Foundation-36874]] [[Image:Google-32x32.png|32px|link=https://plus.google.com/u/0/communities/105181517914716500346?cfem=1]] [[Image:Ning-32x32.png|32px|link=http://myowasp.ning.com/]]



|}

| style="border: 3px solid rgb(204, 204, 204); vertical-align: top; width: 95%; font-size: 95%; color: rgb(0, 0, 0);" |
<div style="padding:2em;padding-bottom:0px;">

<center>[[Image:Under-construction-small.jpg | link=https://www.owasp.org/index.php/Category:FIXME]]</center>
<center>[https://www.owasp.org/index.php/OWASP_Strategic_Goals Projects are a 2016 Strategic Goal]</center>

[[Image:New_initiatives.png|center|300px| link=http://owasp.force.com/volunteers/GW_Volunteers__VolunteersJobListing]]

[[Image:Donate_here_banner.png|center|300px| link=http://www.regonline.com/Register/Checkin.aspx?EventID=1044369]]
</div>

{|

| style="width: 110px; font-size: 95%; color: rgb(0, 0, 0);" |
|}

| style="width: 110px; font-size: 95%; color: rgb(0, 0, 0);" |
|}


= Project Inventory =


(The Projects pages are constantly being updated. Some pages may contain outdated information. You can help OWASP to keep these pages current by visiting [https://www.owasp.org/index.php/Category:FIXME FixME]) Please contact Claudia Aviles Casanovas with questions using the [https://www.tfaforms.com/308703| contact us form]

==Quick Guide to Projects==

===Quick Guide for Developers===

This is a Quick Guide for Developers new to OWASP projects:

Infographic containing Hyperlinks to projects:
https://magic.piktochart.com/output/6400107-untitled-infographic

Downloadable Images:
[[File:Owasp_Dev_Guide.pdf ]]

==Flagship Projects==
[[File:Flagship_banner.jpg]]

The OWASP Flagship designation is given to projects that have demonstrated strategic value to OWASP and application security as a whole.
After a major review process [[https://www.owasp.org/index.php/LAB_Projects_Code_Analysis_Report More info here]] the following projects are considered to be flagship candidate projects. These project have been evaluated more deeply to confirm their flagship status:

====Tools [Reviewed September 2014 - Health Check February 2016]====

* [[OWASP_Zed_Attack_Proxy_Project|OWASP Zed Attack Proxy]][[File:Thumbsup.png|15px]]
* [[OWASP_Web_Testing_Environment_Project|OWASP Web Testing Environment Project]][[File:Thumbsup.png|15px]]
* [[OWASP_OWTF|OWASP OWTF]][[File:Thumbsup.png|15px]]
* [[OWASP_Dependency_Check|OWASP Dependency Check]][[File:Thumbsup.png|15px]]

====Code [Reviewed November 2014 - Health Check February 2016]====
* [[:Category:OWASP_ModSecurity_Core_Rule_Set_Project|OWASP ModSecurity Core Rule Set Project]][[File:Thumbsup.png|15px]]
* [[:Category:OWASP_CSRFGuard_Project|OWASP CSRFGuard Project]][[File:Thumbsup.png|15px]]
* [[OWASP_AppSensor_Project|OWASP AppSensor Project]][[File:Thumbsup.png|15px]]

====Documentation[Reviewed February 2015 - Health Check February 2016] ====
* [[:Category:OWASP_Application_Security_Verification_Standard_Project|OWASP Application Security Verification Standard Project]][[File:Thumbsup.png|15px]]
* [[:Category:Software_Assurance_Maturity_Model|OWASP Software Assurance Maturity Model (SAMM)]][[File:Thumbsup.png|15px]]
* [[OWASP_AppSensor_Project|OWASP AppSensor Project]][[File:Thumbsup.png|15px]]
* [[:Category:OWASP_Top_Ten_Project|OWASP Top Ten Project]][[File:Thumbsup.png|15px]]
* [[OWASP_Testing_Project|OWASP Testing Project]][[File:Thumbsup.png|15px]]

==Labs Projects==
[[File:Lab banner.jpg]]

OWASP Labs projects represent projects that have produced a deliverable of value. While these projects are typically not production ready, the OWASP community expects that an OWASP Labs project leader is producing releases that are at least ready for mainstream usage.

===Thumbs up===
Thumbs up are given to LAB projects showing a steady progress in their development, had very active and continuous releases and commits, regular update of information on their wiki page and have quite complete documentation. These projects are almost ready to become flagship

====Tools [Reviewed February 2015]Health Check February 2016]====
* [[O-Saft|O-Saft]][[File:Thumbsup.png|15px]]
* [[OWASP_Dependency_Track_Project|OWASP Dependency Track Project]][[File:Thumbsup.png|15px]]
* [[:Category:OWASP_EnDe|OWASP EnDe Project]][[File:Thumbsup.png|15px]]
* [[OWASP_Hackademic_Challenges_Project|OWASP Hackademic Challenges Project]][[File:Thumbsup.png|15px]]
* [[OWASP_Mantra_-_Security_Framework|OWASP Mantra Security Framework]][[File:Thumbsup.png|15px]]
* [[OWASP_Mobile_Security_Project|OWASP Mobile Security Project]][[File:Thumbsup.png|15px]]
* [[OWASP_O2_Platform|OWASP O2 Platform]][[File:Thumbsup.png|15px]]
* [[OWASP_Passfault|OWASP Passfault]] [[File:Thumbsup.png|15px]]
* [https://www.owasp.org/index.php/Category:OWASP_Security_Ninjas_AppSec_Training_Program OWASP Security Ninjas Appsec Training][[File:Thumbsup.png|15px]]
* [[OWASP_Security_Shepherd|OWASP Security Shepherd]][[File:Thumbsup.png|15px]]
* [[:Category:OWASP WebGoat Project|OWASP WebGoat Project]] [[File:Thumbsup.png|15px]]
* [[OWASP_Xenotix_XSS_Exploit_Framework|OWASP Xenotix XSS Exploit Framework]][[File:Thumbsup.png|15px]]
* [[OWASP_Code_Pulse_Project|OWASP Code Pulse Project]][[File:Thumbsup.png|15px]]

====Documentation [In Progress-Results by February/March 2015]Health Check February 2016]====

* [[OWASP_Application_Security_Guide_For_CISOs_Project|OWASP Application Security Guide For CISOs]][[File:Thumbsup.png|15px]]
* [[Cheat_Sheets|OWASP Cheat Sheets Project]] [[File:Thumbsup.png|15px]]
* [[OWASP_CISO_Survey|OWASP CISO Survey]] [[File:Thumbsup.png|15px]]
* [[:Category:OWASP_Code_Review_Project|OWASP Code Review Guide Project]][[File:Thumbsup.png|15px]]
* [[OWASP_Codes_of_Conduct|OWASP Codes of Conduct]][[File:Thumbsup.png|15px]]
* [[OWASP_Cornucopia|OWASP Cornucopia]][[File:Thumbsup.png|15px]]
* [[:Category:OWASP_Guide_Project|OWASP Development Guide Project]][[File:Thumbsup.png|15px]]
* [[OWASP_Podcast|OWASP Podcast Project]][[File:Thumbsup.png|15px]]
* [[OWASP_Proactive_Controls|OWASP Proactive Controls]] [[File:Thumbsup.png|15px]]
* [[OWASP_Internet_of_Things_Top_Ten_Project|OWASP Internet of Things Top Ten Project]][[File:Thumbsup.png|15px]]
* [[OWASP_Top_10_Privacy_Risks_Project|OWASP Top 10 Privacy Risks Project]][[File:Thumbsup.png|15px]]
* [[OWASP_Reverse_Engineering_and_Code_Modification_Prevention_Project|OWASP Reverse Engineering and Code Modification Prevention Project]][[File:Thumbsup.png|15px]]

====Contests - Health Check February 2016====
*[[OWASP_University_Challenge|OWASP University Challenge]] [[File:Thumbsup.png|15px]]
* [[:Category:OWASP_CTF_Project|OWASP CTF Project]][[File:Thumbsup.png|15px]]

====Code [Reviewed February 2015] Health Check February 2016====
* [[:Category:OWASP_Enterprise_Security_API|OWASP Enterprise Security API]][[File:Thumbsup.png|15px]]
* [[OWASP_Python_Security_Project|OWASP Python Security Project]][[File:Thumbsup.png|15px]]

==Incubator Projects==
[[File:Incubator_banner.jpg]]

OWASP Incubator projects represent the experimental playground where projects are still being fleshed out, ideas are still being proven, and development is still underway. The “OWASP Incubator” label allows OWASP consumers to readily identify a project’s maturity. The label also allows project leaders to leverage the OWASP name while their project is still maturing.

===Thumbs up===
Thumbs up are given to incubator projects showing a steady progress in their development, had continuous releases and commits or have delivered a complete product, including open source repository location, basic user guidelines and documentation

====Code [Reviewed March 2015 - Health Check February 2016]====
* [[OWASP_Java_Encoder_Project|OWASP Java Encoder Project]] [[File:Thumbsup.png|15px]]
*[[OWASP_Java_HTML_Sanitizer|OWASP Java HTML Sanitizer Project]] [[File:Thumbsup.png|15px]]
* [[OWASP_Node_js_Goat_Project|OWASP Node.js Goat Project]] [[File:Thumbsup.png|15px]]
* [[OWASP_Security_Logging_Project|OWASP Security Logging Project]][[File:Thumbsup.png|15px]]
* [[OWASP_Mth3l3m3nt_Framework_Project|OWASP Mth3l3m3nt Framework Project]][[File:Thumbsup.png|15px]]
* [[WebGoatPHP|OWASP WebGoat PHP Project]]
* [[OWASP_Secure_Headers_Project|OWASP Secure Headers Project]]

====Research====
* [[OWASP_WASC_Distributed_Web_Honeypots_Project|OWASP WASC Distributed Web Honeypots Project]][[File:Thumbsup.png|15px]]

====Tools [Reviewed last: May 2015 - Health Check February 2016]====
* [[Benchmark|OWASP Benchmark]][[File:Thumbsup.png|15px]]
* [[OWASP_Wordpress_Vulnerability_Scanner_Project | OWASP Wordpress Vulnerability Scanner]][[File:Thumbsup.png|15px]]
* [[OWASP_Threat_Dragon | OWASP Threat Dragon]][[File:Thumbsup.png|15px]]
* [[OWASP_Security_Knowledge_Framework#tab=Main | OWASP Security Knowledge Framework]][[File:Thumbsup.png|15px]]
* [[OWASP_Faux_Bank_Project|OWASP Faux Bank Project]][[File:Thumbsup.png|15px]]
* [[OWASP_Droid10_Project|OWASP Droid]][[File:Thumbsup.png|15px]]
*[[OWASP_WAP-Web_Application_Protection|WAP Web Application_Protection]][[File:Thumbsup.png|15px]]
*[[OWASP_Mutillidae_2_Project|OWASP Mutillidae 2 Project]] [[File:Thumbsup.png|15px]]
*[[OWASP_SeraphimDroid_Project|OWASP SeraphimDroid Project]][[File:Thumbsup.png|15px]]
*[[OWASP_WebSpa_Project|OWASP WebSpa Project]][[File:Thumbsup.png|15px]]
*[[OWASP_Pyttacker_Project|OWASP Pyttacker Project]][[File:Thumbsup.png|15px]]
*[[OWASP_SonarQube_Project|OWASP SonarQube Project]][[File:Thumbsup.png|15px]]
*[[OWASP Rainbow Maker Project | OWASP Rainbow Maker Project]] [[File:Thumbsup.png|15px]]
* [[OWASP_ZSC_Tool_Project|OWASP ZSC Tool Project]] [[File:Thumbsup.png|15px]]
*[[OWASP_DefectDojo_Project|OWASP DefectDojo Project]]
*[[OWASP_Web_Malware_Scanner_Project|OWASP_Web Malware Scanner Project]]
*[[OWASP_Basic_Expression_%26_Lexicon_Variation_Algorithms_(BELVA)_Project| OWASP Basic Expression Lexicon Variation Algorithms (Belva) Project]]
*[[OWASP_VBScan_Project| OWASP VBScan]]
*[[OWASP_Virtual_Village_Project|OWASP Virtual Village Project]]

====Documentation[Review: May 2015 - Health Check February 2016]====
*[[OWASP_Snakes_and_Ladders|OWASP Snakes and Ladders Project]] [[File:Thumbsup.png|15px]]
*[[OWASP Automated Threats to Web Applications]] [[File:Thumbsup.png|15px]]
*[[OWASP_Vulnerable_Web_Applications_Directory_Project|OWASP Vulnerable Web Applications Directory Project]][[File:Thumbsup.png|15px]]
*[[:Category:OWASP_.NET_Project|OWASP .NET Project]][[File:Thumbsup.png|15px]]
*[[OWASP_WASC_Web_Hacking_Incidents_Database_Project|OWASP WASC Web Hacking Incidents Database Project]][[File:Thumbsup.png|15px]]
*[[OWASP_Incident_Response_Project|OWASP Incident Response Project]][[File:Thumbsup.png|15px]]
*[[OWASP KALP Mobile Project | OWASP KALP Mobile Project]][[File:Thumbsup.png|15px]]
*[[OWASP_Application_Security_Program_Quick_Start_Guide_Project|OWSP_Application_Security_Program_Quick_Start_Guide_Project]][[File:Thumbsup.png|15px]]
*[[OWASP_Secure_Configuration_Guide|OWASP_Secure_Configuration_Guide]][[File:Thumbsup.png|15px]]
*[[OWASP_Knowledge_Based_Authentication_Performance_Metrics_Project|OWASP_Knowledge_Based_Authentication_Performance_Metrics_Project]][[File:Thumbsup.png|15px]]
*[[OWASP_RFP-Criteria|OWASP Request For Proposal]][[File:Thumbsup.png|15px]]
*[[OWASP_Web_Mapper_Project|OWASP Web Mapper Project]]
*[[OWASP_Top_10_fuer_Entwickler|OWASP 10 Fuer Entwickler]]

==Educational Initiatives==
====Health Check February 2016====
*[[OWASP_Student_Chapters_Program|OWASP Student Chapters Project]][[File:Thumbsup.png|15px]]
*[[:Category:OWASP_Education_Project|OWASP Education Project]][[File:Thumbsup.png|15px]]
*[[:Category:OWASP_Speakers_Project|OWASP Speakers Project]][[File:Thumbsup.png|15px]]
*[[OWASP_Media_Project|OWASP Media Project]][[File:Thumbsup.png|15px]]
*[[OWASP_PHP_Security_Training_Project|OWASP PHP Security Training Project]][[File:Thumbsup.png|15px]]
*[[OWASP_Online_Academy#tab=Main | OWASP Online Academy]][[File:Thumbsup.png|15px]]

== Low Activity Projects ==
[[File:low_activity.jpg]]
======Low Activity (LABS)[Reviewed July 2015] Health Check February 2016======

These projects had no releases in at least a year, however have shown to be valuable tools
'''Code [Low Activity]''' Health Check February 2016
* [[Project_Information:template_Vicnum_Project|OWASP Vicnum Project]][[File:Thumbsup.png|15px]]
* [[OWASP_Broken_Web_Applications_Project|OWASP Broken Web Applications Project]][[File:Thumbsup.png|15px]]

'''Tools Health Check February 2016'''
*[https://www.owasp.org/index.php/Category:OWASP_WebScarab_Project WebScarab][[File:Thumbsup.png|15px]]
*[[OWASP_HTTP_Post_Tool|OWASP HTTP POST Tool]][[File:Thumbsup.png|15px]]

'''Documentation [Low Activity]''' '''Health Check February 2016'''
* [[OWASP_Appsec_Tutorial_Series|OWASP AppSec Tutorial Series]][[File:Thumbsup.png|15px]]
* [[:Category:OWASP_Legal_Project|OWASP Legal Project]][[File:Thumbsup.png|15px]]
* [[Virtual_Patching_Best_Practices|Virtual Patching Best Practices]][[File:Thumbsup.png|15px]]
* [[OWASP_Secure_Coding_Practices_-_Quick_Reference_Guide|OWASP Secure Coding Practices - Quick Reference Guide]][[File:Thumbsup.png|15px]]

==Donated Projects==

OWASP Donated Projects are inactive projects that have been donated to the OWASP Projects Infrastructure.

====Tools====

* [[OWASP_Excess_XSS_Project|OWASP Excess XSS Project]][[File:Thumbsup.png|15px]]
* [[OWASP_JOTP_Project|OWASP jOTP Project]][[File:Thumbsup.png|15px]]

==OWASP Archived Projects==
OWASP Archived Projects are projects that have developed outside OWASP umbrella or have become inactive. If you are interested in pursuing any of the inactive projects (click hyperlink for list), please contact us and let us know of your interest.

'''Added New Project on February 2016'''

https://www.owasp.org/index.php/Category:OWASP_Project_Archived_Projects

= Former Project Task Force =

====OWASP Project Task Force====
(The Projects pages are constantly being updated. Some pages may contain outdated information. You can help OWASP to keep these pages current by visiting [https://www.owasp.org/index.php/Category:FIXME FixME]) Please contact Claudia Aviles Casanovas with questions using the [https://www.tfaforms.com/308703| contact us form]

{{:Task_Force/OWASP_Projects}}

= Online Resources =

===Project Online Resources===

* [https://docs.google.com/a/owasp.org/spreadsheets/d/13QM6yCqpirNuURbBdB5YZ_30mfQGbLjzBTGx0CTSNWw/edit?usp=sharing|OWASP Open Source Project Resources & Services]

Please note that some services are 100% free and some have nominal cost.

{{:Project_Online_Resources}}

= Starting a New Project =

== So you want to start a project... ==

Starting an OWASP project is quite easy, and your desire to contribute and make it happen is essential.
[[File:HowToStartProjectoWasp.png | 600px | right]]

Here are some of the guidelines for running a successful OWASP project:

-Start exploring the actual OWASP projects Inventory. Many projects handle specific areas of security it is a good idea to start looking how other successful projects do this (LABS/Flagship)

-Place your idea or project on the [https://www.owasp.org/index.php/Project_Ideas_Board#From_Idea_to_Project_Incubator Project Ideas Board].This phase will help you to define the project goals and also explore and exchange with other OWASP leaders and volunteers how to develop the idea into a tangible project

-Explore and research if your idea covers a unique segment in the Security arena.Think of your project as a product, if you really want people using it, think how this project will cover a necessity in the security area you are working on

-Define what kind of project you would like to start. Is it a code, tool or documentation?

-Communicate through the Project leader mailing list about your idea and get feedback and meet potential contributors

-Develop your project based on the type of project. For example if you are willing to start a documentation project, begin by defining a Table of Content and work it through with potential contributors. First of all begin by creating a Road-map for your project. This is essential to submit your project. We highly recommend to read documentation such as "[http://www2.econ.iastate.edu/tesfatsi/ProducingOSS.KarlFogel2005.pdf How to start /run a successful Open Source Projects]".

[[File:RoadmapIncubatorProjectExample2.PNG | 500px | left]]

Some recommendations on how to start a documentation project
[[https://www.owasp.org/index.php/File:Document_Guide_(1).png| Document Guide Project]]

===Importance of a well thought out Road-map===
Many Incubator project leaders struggle with creating a realistic planning, which should be based on their available resources and time. A well thought out plan makes a difference between a procrastinating project and a successful one. The important aspect of this is, that the project leader is able to create a plan based on his situation. The following is an example of a Roadmap, which has focused to produce a Documentation first release in a year and a basic outline how they plan to cover 4 essential aspects which are Research & Development, Marketing, Planning and Goals.

"Your [project] roadmap should tell a coherent story about the likely growth of your product. Each release should build on the previous one and move you closer towards your vision. Your roadmap should be convincing and realistic: Don’t speculate or oversell your [project]. Be clear who your audience is: An internal roadmap talks to development, marketing, sales, service, and the other groups involved in making your [project] a success; and external one talks to existing and prospective customers."
Extracted from : "[[http://www.romanpichler.com/blog/10-tips-creating-agile-product-roadmap/ 10 Tips for Creating an Agile Product Roadmap]]"

* Start defining a development, documentation and marketing plan for your project. Set short , medium and long term plans. Include promotion of your project, this is very important in order to engage users and consumers of your project. Contact project coordinator and the Project Task Force to help you achieve this goal. You ''can'' run a single person project, but it's usually best to get the community involved. You should be prepared to support a mailing list, build a team, speak at conferences, and promote your project.

* You can contribute existing documents or tools to OWASP! Assuming you have the intellectual property rights to a work, you can open it to the world as an OWASP Project. Please coordinate this with OWASP by contacting owasp(at)owasp.org.

* Available Grants to consider if you need funding - [[Grants|Click Here]]

* You should promote your project through the OWASP channels as well as by outside means. Get people to blog about it!

== '''Creating a New Project''' ==
Once you have passed the Project Ideas phase, then you will be ready to start a new project

'''[http://www.tfaforms.com/263506 Please submit a new project application here].''''''

'''2016 OWASP Project Process'''

'''Existing WORKFLOW''' [https://docs.google.com/viewer?a=v&pid=forums&srcid=MDM4NTc0NDY0NjkwMzEwMTMzMzkBMDIxODM3MDc5ODA4OTMxNjAzNjkBSFlWTDZaTE5Ed0FKATAuMQFvd2FzcC5vcmcBdjI Incubator Project Flow]

'''Step 1:'''
New Project Leader submits New Project Request Form it is logged in the system and an alert is sent to the Project Coordinator

'''Step 2:'''
New Project Request is received and reviewed by Project Coordinator for complete information .It must contain the following information to qualify as an acceptable submission:
You will need to gather the following information together for your application:

*Project Name,
*Project purpose / overview,
*Project Roadmap,
*Project links (if any) to external sites,
*[[Guidelines_for_OWASP_Projects#Project_Licensing|Project License],]
*Project Leader name,
*Project Leader email address,
*Project Leader wiki account - the username (you'll need this to edit the wiki),
*Project Contributor(s) (if any) - name email and wiki account (if any),
*Project Main Links (if any).
*==>For Documentation: A table of Contents
*==>For Code: A prototype hosted in an open source repository of your choice.

'''Step 3:'''
If all information is completed following the minimum criteria for Projects (Code/Tool/documentation), The Project Coordinator notifies the Project Leader that the request has been accepted, and at the same time notifies the Review team that a new project has been submitted, including al the information requested in the project criteria

'''Step 4:'''
Project Coordinator proceeds to create a new Wiki page for the project including all the information sent by the project leader. project coordinator uses one of these project wiki template:
*For Docs: https://www.owasp.org/index.php/OWASP_Documentation_Project_Template
*For Code: https://www.owasp.org/index.php/OWASP_Code_Project_Template
*For Tool: https://www.owasp.org/index.php/OWASP_Tool_Project_Template
Also Project coordinator creates a mailing list for the project leader and sets him as admin

'''Step 5:'''
Project Coordinator notifies project leader and Review team about the created wiki page, providing the link to the wiki page.
*Review team might provide comments for further improvement of the wiki page if necessary
*Project leader should request a wiki account to be able to update his own wiki page afterwards if he has not one yet

'''Step 6:'''
Project coordinator updates the Wiki project inventory, Dashboard and open hub with the information regarding the new created project

'''Step 7:'''
Project is set in the agenda by the Project Coordinator for monitoring over the next 3 months to check how has been developing.

'''Step 8:'''
Every 3 months, project co-ordinator monitors the activity on the wiki page for new updates and on the Openhub for commits and level of activity . Findings are then reported on the Dashboard as comments and CC through email to the review team

'''Step 9:'''
if the project has not been updated and has no activities after six months of creation, project coordinator sends an email to the project leader requesting an update and status to see how has been developing, CC: project review team regarding the lack of activity .Findings are then updated on the dashboard.

'''Step 10:'''
Over the next 6 months the project is monitored again for activity. If no updates have occurred since its inception after 12 months, project is then set as inactive and project leader and review team is notified about the status.
Project coordinators updates :
* Wiki page of the project is labeled as 'inactive' (inactive banner)
*The Project is set under the 'inactive category'
*Dashboard is updated with comments and set as inactive

<hr>

'''Reference Material'''

[https://www.openhub.net/orgs/OWASP Openhub]

[https://docs.google.com/spreadsheets/d/1lO8UoQgIFET3MC5v2OVVdtkTe1IbWiJLMnINx6Hm2jE/edit?ts=56a159b7#gid=0 Dashboard]

[https://www.owasp.org/index.php/Project_Reviews_Guideline Project Review Guidelines]

[http://owasp.github.io/ProjectReviews/index.html GITHUB OWASP]

[https://docs.google.com/presentation/d/1tGdmgzDGjoHVtHZbV9dqGR2XQVlT8TR1cet-4r0C8RY/edit?ts=56a16be2#slide=id.gee0716e2f_0_1 Projects Slides]

* Check out the '''[[Guidelines for OWASP Projects]]'''.
* [[Grant_Spending_Policy|Grant Spending Policy]]
* [[Project_Spending_Policy|Project Spending Policy]]
* [[Project_Sponsorship_Operational_Guidelines|Project Sponsorship Operational Guidelines]]

==OWASP Recommended Licenses==

{{Recommended_Licenses}}

==Funding your Project==
An OWASP project does not receive any funding for development at project inception; however, a new project does have the opportunity to submit a request to receive funds if they are available for the year. Additionally, project leaders have the option of seeking sponsorship from outside organizations, but project leaders are required to seek funding through their own initiative. Please contact the OWASP Projects Manager for more information.

== Project Release ==

As your project reaches a point that you'd like OWASP to assist in its promotion, the will need the following information to help spread the word about your project:

# Short 5 sentence paragraph outlining what your project is about, what you hope to accomplish with your project, what value your project brings to software security, and contributor and project leader names and contact information.
# Link to your wiki page.
# Link to your code repository or a link to where readers can download your project.
# Latest Release description answering the following questions: What is it?, What does it do?, Where can I get it?, Who should I contact if something goes wrong?.

==Project Process Forms==
These forms were created to help project leaders, and those interested in a going through a process in the OWASP projects infrastructure. They facilitate the management of each query based on the specific task an applicant will need help with. The forms are described below, and they are linked with their designated online application form.

* [http://www.tfaforms.com/264422 Project Transition Application]:The OWASP project transition form gives current project leaders an easy way of handing over project administration information to individuals wishing to take over a project.

* [http://www.tfaforms.com/264413 Project Review Application]:This form is for current project leaders to request a review of their project based on OWASP graduation criteria. The aim is to designate an OWASP volunteer to review these projects within 3 months time.

* [http://www.tfaforms.com/264418 Project Donation Application]:This form is for projects outside of the OWASP project infrastructure. Project Leaders for these open source projects can choose to partner or give their project to OWASP directly through this form.

* [http://www.tfaforms.com/264428 Project Adoption Request]:This form is used when someone is interested in adopting an archived project.

* [http://www.tfaforms.com/264426 Project Abandonment Request]:The OWASP project abandonment form gives current project leaders an easy way of letting the OWASP Foundation know that they wish to resign their project leader duties. This form should be used when no replacement project leader exists to take over these duties.

* [http://www.tfaforms.com/264392 Incubator Project Graduation Application]:This application form is for Incubator Projects to apply for Labs Project status.

= Participating in a Project =


== Joining a Project... ==

OWASP projects are community driven and most projects are open for anyone motivated to join.

The first step is to find a project you are interested to be part of. The list of all projects can be found in the {{#switchtablink:Project_Inventory|Project Inventory}}. Further steps then depend on the status of the project you selected.

If the project is active, the best way is to join the mailing list and get in touch with the people actively participating. Other ways would be contacting the project leader team or just starting to participate by testing the software, writing blogs or documentation, report issues via tracker or even propose code modifications. In general, the more you show your interest and motivation, the easier it is to find yourself as a member of the team.

Some projects are of low activity or even inactive. In this case there is no possibility to join an existing team, but it would rather be a re-boot. If you feel eager to do this, please contact the general OWASP administrators. It is however important that you are sure about the commitment you are about to make.

Some things are important:

- Don’t be shy. If you wish to be part of the OWASP initiative, you will find a task that suits your experience and your level of possible time investment.

- Baby steps are easier than huge commitments. Just start helping with small tasks and get known by the project team. You will grow into the project in a natural way.

Please read more about the general project workflow on the {{#switchtablink:Starting_a_New_Project|Starting a New Project}} page.

== Archives ==

[[Projects_Reboot_2012_Homepage|Archive of the 'Project Reboot 2012' page]]

= Project Assessments =

==OWASP Project Lifecycle==
The OWASP Projects Lifecycle represents a balance between keeping a very loose structure around OWASP projects, and ensuring that OWASP consumers are not confused about a project’s maturity and quality. The lifecycle stage allows consumers to easily identify mature projects, and projects that are proofs of concept, experimental, and classified as prototypes in their current state. The greater the maturity of the project, the greater the level of responsibility for the project leader. These responsibilities are not trivial as OWASP provides incentives and benefits (Section 7) for projects who take on these added responsibilities.

====The OWASP Project Lifecycle is broken down into the following stages:====

'''Incubator Projects''': OWASP Incubator projects represent the experimental playground where projects are still being designed, ideas are still being proven, and development is still underway. The “OWASP Incubator” label allows OWASP consumers to readily identify a project’s maturity; moreover, the label allows project leaders to leverage the OWASP name while their project is still maturing. OWASP Incubator projects are given a place on the OWASP Projects Portal to leverage the organizations' infrastructure, and establish their presence and project history.

'''Lab Projects''': OWASP Labs projects represent projects that have produced a deliverable of significant value. Leaders of OWASP Labs projects are expected to stand behind the quality of their projects as these projects have matured to the point where they are accepted by a significant portion of the OWASP community. While these projects are typically not production ready, the OWASP community expects that an OWASP Labs project leader is producing releases that are ready for mainstream usage. OWASP Labs Projects are meant to be the collection of established projects that have gained community support and acclaim by undergoing the project review process.

'''Flagship Projects''': The OWASP Flagship designation is given to projects that have demonstrated superior maturity, established quality, and strategic value to OWASP and application security as a whole. Eligible projects are selected from the OWASP Labs project pool. This selection process generally ensures that there is only one project of each type covering any particular security space. OWASP Flagship projects represent projects that are not only mature, but are also projects that OWASP as an organization provides direct support to maintaining. The core mission of OWASP is to make application security visible and so as an organization, OWASP has a vested interest in the success of its Flagship projects. Since Flagship projects have such high visibility, these projects are expected to uphold the most stringent requirements of all OWASP Projects.

'''Code Projects''': OWASP code projects are very important for the cyber security solutions. Because these projects are used to find out the application security problems and try to solve those problems.

== OWASP Project Stage Benefits==
This section outlines the benefits of starting an OWASP project, and the benefits of being at each different stage in the projects lifecycle. In my short time here at OWASP as the PM, I have had several potential project leaders ask me what the benefits are of starting their project with OWASP. Below is my proposal for each Stage’s benefits.

'''Incubator'''
* Financial Donation Management Assistance
* Project Review Support
* WASPY Awards Nominations
* OWASP OSS and OPT Participation
* Opportunity to submit proposal: $500 for Development.
* Community Engagement and Support
* Recognition and visibility of being associated with the OWASP Brand.

'''Labs'''
* All benefits given to Incubator Projects
* Technical Writing Support
* Graphic Design Support
* Project Promotion Support
* OWASP OSS and OPT: Preference

'''Flagship'''
* All benefits given to Incubator & Labs Projects
* Grant finding and proposal writing help
* Yearly marketing plan development
* OWASP OSS and OPT participation preference

For more detailed information on OWASP Project Stage Benefits, please see the Project Handbook.

== Project Monitoring Incubator/Documentation ==
Every 6 months, a project monitoring assessment takes place to evaluate if projects had any releases during this period.A warning will be sent to projects without any activity in 90 days and after 180 days, the project will be set automatically as inactive.
You can set your project active at any time, as long as:
* There has been commits to the project's open repository or
* There has been a beta release of the documentation produced so far or
* Provide a detailed Roadmap

===Importance of a well thought out Roadmap===
Many Incubator project leaders struggle with creating a realistic planning, which should be based on their available resources and time. A well thought out plan makes a difference between a procrastinating project and a successful one. The important aspect of this is, that the project leader is able to create a plan based on his situation. The following is an example of a Roadmap, which has focused to produce a Documentation first release in a year and a basic outline how they plan to cover 4 essential aspects which are Research & Development, Marketing, Planning and Goals.

[[File:RoadmapIncubatorProjectExample2.PNG | 600px]]

"Your [project] roadmap should tell a coherent story about the likely growth of your product. Each release should build on the previous one and move you closer towards your vision. Your roadmap should be convincing and realistic: Don’t speculate or oversell your [project]. Be clear who your audience is: An internal roadmap talks to development, marketing, sales, service, and the other groups involved in making your [project] a success; and external one talks to existing and prospective customers."
Extracted from : "[[http://www.romanpichler.com/blog/10-tips-creating-agile-product-roadmap/ 10 Tips for Creating an Agile Product Roadmap]]"

==Project Monitoring for LABS/Flagship==
These project represent the best OWASP has to offer, therefore monitoring of these projects is closely supervised.
===For Code and Tools===
For projects holding Flagship status, we closely monitor their health every 6 months on the following, among other key indicators:
*Can the project be built correctly?
*Does the project has any activity(commits) in the last 6 months?
*Does the project had any releases in the last 6 months?
*Has the project leaders updated his wiki or website to reflect latest releases?
===For Documentation===
For this part, we are working on the development of an adequate assessment criteria
The following is a draft of the new process proposal: [[https://www.owasp.org/index.php/File:Qualitative_and_Quantitative_Content_Audit.pdf Proposal for Reviewing OWASP Document projects]]

== OWASP Project Graduation==
The Project Graduation Process is an optional process undertaken at the request of a project leader using the Incubator Graduation Form. The purpose of this process is to move a project from the OWASP Incubator into the OWASP Labs. In order to be considered for OWASP Labs, an Incubator project must have submitted an OWASP reviewed deliverable, and obtained at least two (2) positive responses for each of the core criteria project health questions.

The review centers around the following core questions. Each core question has three (3) specific questions made up of binary queries. A project must receive at least two (2) positive responses from each reviewer in two of the binary questions, to warrant a postive response for the core question. Each core question must receive a positive response from both project reviewers to pass the Project Health Assessment for Incubator Projects.

* [https://docs.google.com/spreadsheet/ccc?key=0AllOCxlYdf1AdG5NZGhzTjZpT1RDcnRibjd0aXhfOUE Project Graduation Criteria Checklist]

==OWASP Project Health Assessment==
The Project Health Assessment is an optional process undertaken at the request of a project leader when he/she applies for Project Graduation for projects going from Incubator to LAB and from LAB to Flagship. The purpose of this assessment is to determine whether a project meets the minimum criteria of an OWASP Project outlined in the [https://docs.google.com/spreadsheet/ccc?key=0AllOCxlYdf1AdG5NZGhzTjZpT1RDcnRibjd0aXhfOUE Project Health Assessment Criteria Document]. If a project passes the assessment, it then becomes eligible to graduate into the OWASP Labs Project stage. In order to be considered for OWASP Labs, an Incubator project must have submitted an OWASP reviewed deliverable, and obtained at least two (2) positive responses for each of the core criteria project health questions.

==OWASP Project Deliverable/Release Assessment==
The Project Deliverable/Release Review is an optional process undertaken at the request of a project leader using the Project Deliverable Review Form. The purpose of this process is to review a project’s progress, and to make sure the project is heading in the right direction based on the roadmap they provided at project inception.

Reviews must be performed by two (2) OWASP Chapter or Project Leaders, and their review must answer affirmatively to at least the first two (2) core Project Deliverable/Release Review questions. A project must pass the OWASP Project Deliverable/Release Assessment in order to graduate into the OWASP Labs Project stage.

* [https://docs.google.com/spreadsheet/ccc?key=0AllOCxlYdf1AdG5NZGhzTjZpT1RDcnRibjd0aXhfOUE Project Deliverable/Release Assessment Criteria Checklist]

= Brand Resources =


==The Brand Usage Rules==
See OWASP's [[Marketing/Resources#tab=BRAND_GUIDELINES|The Brand Usage Rules]] for details.

==Project Icons & Templates==
See OWASP'S [[Marketing/Resources#PROJECT_RESOURCES|Project Icons & Templates]] for details.

(Following links and images are provided for a quick overview only, the primary page is [[Marketing/Resources#PROJECT_RESOURCES|Project Icons & Templates]]).

If you require more assistance with these files and/or templates, please contact the OWASP staff for assistance

'''[[OWASP_Operations_Project_Template|OWASP Operational Wiki Template]]'''

'''[[OWASP_Documentation_Project_Template|OWASP Example Template: DO NOT EDIT]]'''

[[Image:OWASP_Project_Header.jpg|Owasp logo|500px]]

[[Image:Project_Type_Files_TOOL.jpg|Owasp logo|200px]] [[Image:Project_Type_Files_DOC.jpg||Owasp logo 1c|200px]]

[[Image:Project_Type_Files_CODE.jpg|Owasp logo|200px]] [[Image:Owasp-defenders-small.png|Owasp logo|100px]] [[Image:Owasp-builders-small.png|Owasp logo|100px]] [[Image:Owasp-breakers-small.png|Owasp logo|100px]]

[[Image:Owasp-incubator-trans-200.png|Owasp logo rev icon|100px]] [[Image:Owasp-labs-trans-85.png|Owasp logo flat|100px]] [[Image:Owasp-flagship-trans-85.png|Owasp logo icon|100px]]

===OpenSAMM===
'''[[Media:OpenSAMM_icons.zip|OpenSAMM Icons]]'''

'''Construction:'''

[[Image:Construction black.png| Construction black| 100px]] [[Image:Construction blue.png| Construction blue| 100px]] [[image:Construction olive.png |construction olive|100px]]

'''Deployment:'''

[[image:Deployment black.png| Deployment black| 100px]] [[image:Deployment blue.png| Deployment blue| 100px]] [[image:Deployment olive.png | Deployment olive| 100px]]

'''Governance:'''

[[image:Governance black.png| governance black| 100px]] [[image:Governance blue.png | governance blue | 100px]] [[image:Governance olive.png | governance olive| 100px]]

'''Verification:'''

[[image:Verification black.png | Verification black | 100px]] [[image:Verification blue.png | verification blue | 100px]] [[image: Verification olive.png | Verification olive | 100px]]

==Book Cover Files==
See OWASP's [[Marketing/Resources#PROJECT_RESOURCES|Project Icons & Templates]] for details.

[[Media:Lulu-guide.pdf|Lulu Guide]]

'''[https://www.dropbox.com/s/h27gsbe5m7idg0y/Finished%20Covers.zip Download the Book Cover Zip File]'''
{|
|-
! width="500" align="center" | 
! width="300" align="center" | 
|-
| align="center" | [[Image:BookImage_01.jpg‎|500px| link=https://www.dropbox.com/s/h27gsbe5m7idg0y/Finished%20Covers.zip]]
| align="center" |

|}

= Terminology =

== OWASP Project Infrastructure ==

*'''OWASP Project Lifecycle:''' The OWASP Projects Lifecycle represents a balance between keeping a very loose structure around OWASP projects, and ensuring that OWASP consumers are not confused about a project’s maturity and quality. The lifecycle stage allows consumers to easily identify mature projects, and projects that are proofs of concept, experimental, and classified as prototypes in their current state.

*'''Incubator Project:''' OWASP Incubator projects represent the experimental playground where projects are still being fleshed out, ideas are still being proven, and development is still underway. The “OWASP Incubator” label allows OWASP consumers to readily identify a project’s maturity. The label also allows project leaders to leverage the OWASP name while their project is still maturing.

*'''Labs Project:''' OWASP Labs projects represent projects that have produced a deliverable of value. While these projects are typically not production ready, the OWASP community expects that an OWASP Labs project leader is producing releases that are at least ready for mainstream usage.

*'''Flagship Project:''' The OWASP Flagship designation is given to projects that have demonstrated strategic value to OWASP and application security as a whole.

*'''Project Benefits:''' The standard list of resources and incentives made available to project leaders based on their project's current maturity level.

== OWASP Project Reviews ==

*'''Project Reviews:''' Project reviews are the method OWASP uses to establish a minimal baseline of project characteristics and release quality. Reviews are not mandatory, but they are necessary if a project leader wishes to graduate to the next level of maturity within the OWASP Global Projects infrastructure. Projects can be reviewed when an Incubator project wishes to graduate into the OWASP Labs designation, and project releases can be reviewed if they want the quality of their deliverable to be vouched for by OWASP.

*'''Project Reviewer Pool:''' The project reviewer pool is made up of veteran reviewers who have proven themselves dedicated to executing quality reviews of projects.

*'''Project Graduation:''' The Project Graduation Process is an optional process undertaken at the request of a project leader using the Incubator Graduation Form. The purpose of this process is to move a project from the OWASP Incubator into the OWASP Labs.

*'''Project Health Assessment:''' The Project Health Assessment is an optional process undertaken at the request of a project leader when he/she applies for Project Graduation The purpose of this assessment is to determine whether a project meets the minimum criteria of an OWASP Project outlined in the [https://docs.google.com/a/owasp.org/spreadsheet/ccc?key=0AllOCxlYdf1AdG5NZGhzTjZpT1RDcnRibjd0aXhfOUE#gid=1 Project Health Assessment Criteria Document].

*'''Project Release:''' A project release refers to the final deliverable a project produces. It is the final product of the project.

*'''Project Deliverable/Release Review:''' The Project Deliverable/Release Review is an optional process undertaken at the request of a project leader using the Project Deliverable Review Form. The purpose of this process is to review a project’s progress, and to make sure the project is heading in the right direction based on the roadmap they provided at project inception.

== OWASP Projects Processes ==

*'''Project Processes:''' The set of streamlined processes that exist to help projects move smoothly through the OWASP Project Lifecycle.

*'''Project Inception Process:''' The Project Inception Process is how a brand new idea becomes an OWASP Project. Such projects are labeled as OWASP Incubator projects. The process involves submitting the proposed project name, project leader information, project description, project roadmap, and selecting an appropriate open-source license for the project using the New Project Form on the Projects Portal.

*'''Project Donation Process:''' The Project Donation Process is used for a project that has an existing functional release, but is not currently associated with OWASP. This process is the primary mechanism by which individuals or organizations can transfer the ownership of their project’s copyright to OWASP.

*'''Project Transition Process:''' The Project Transition Process is used to transition leadership of a project to a new project leader. This is a simple automated process to transfer the relevant accounts, mailing lists, and other project resources to the new project leader.

*'''Project Abandonment Process:''' The Project Abandonment Process was put in place for those occasions in which a project leader is no longer able to manage their project, and has not been able to find a suitable replacement for the leader role. Project Abandonment can also occur when the project leader feels his/her project has become obsolete. Under these circumstances, the acting project leader is encourage do submit the Project Abandonment Form found in the Projects Portal.

*'''Incubator Graduation Process:''' The Incubator Graduation Process is an optional process undertaken at the request of a project leader using the Incubator Graduation Form. The purpose of this process is to move a project from the OWASP Incubator into the OWASP Labs.

== Projects at Conferences ==

*'''AppSec Conferences:''' OWASP AppSec conferences bring together industry, government, security researchers, and practitioners to discuss the state of the art in application security. This series was launched in the United States in 2004 and Europe in 2005. Global AppSec conferences are held annually in North America, Latin America, Europe, and Asia Pacific.

*'''Open Source Showcase:''' The Open Source Showcase is an OWASP AppSec Conference event module designed to give Open Source project leaders the opportunity to demo their projects.

*'''OWASP Project Track:''' The OWASP Project Track is an OWASP AppSec Conference event module designed to give OWASP Project leaders the opportunity to showcase their projects as an official conference presenter.

== OWASP Projects General ==

*'''OWASP Code of Ethics:''' The OWASP Code of Ethics are the set of guidelines and principles that the OWASP Foundation expects all of its members and conference attendees to abide by. A copy of the Code of Ethics can be found here in the [https://www.owasp.org/index.php/About_The_Open_Web_Application_Security_Project#Code_of_Ethics OWASP About page].

= Sponsorships and Donations =


==Donate to OWASP Global Projects ==
OWASP Projects, a global division of the OWASP Foundation, is run under the same world wide not-for-profit charitable status as all the foundation strategic groups. OWASP provides a platform for contributors to share their work while providing them with the project and community support they need throughout their project development. All OWASP Projects are run by volunteers and they rely on personal donations and sponsorship to continue their development. Donate to OWASP Projects, and we promise to spend your money wisely on open source initiatives.

'''This is how your money can help:'''

* $20 could help us spread the word on the importance of open source initiatives in the Application Security industry.
* $100 could help fund OWASP project demos at major conferences.
* $250 could help get our volunteer Project Leaders to speaking engagements.

[[Image:Donate_Button.jpg | link=http://www.regonline.com/Register/Checkin.aspx?EventID=1044369]]

= Contact US =


If you need any help with anything projects related, or if you simply need some more information, please do not hesitate to [http://owasp4.owasp.org/contactus.html Contact Us].


= Project Review Volunteer Board =


CURRENTLY ALL PROJECT REVIEWS ARE HALTED UNTIL FURTHER NOTICE -
Please contact Claudia Aviles Casanovas with questions using the [https://www.tfaforms.com/308703| contact us form]

'''Volunteer to do a Technical Project Reviews!'''

'''Listed below are OWASP Project that need your help and technical expertise to graduate to the next level.
'''

[http://owasp.force.com/volunteers/GW_Volunteers__VolunteersJobListing VOLUNTEERS NEEDED TO REVIEW A PROJECT!]

[http://owasp.force.com/volunteers/GW_Volunteers__VolunteersJobListing?campaignid=701U0000000tflX Review a Tool Project]

[http://owasp.force.com/volunteers/GW_Volunteers__VolunteersJobListing?campaignid=701U0000000tfn4 Review a Code Project]

W


<headertabs />

OWASP Virtual Village Project

2016-05-03T22:58:02Z

H4x0rdi3: /* Localization */

=Main=

Deliverable:
To provide a stable platform of multiple operating systems, Desktop / Servers for Breakers, Defenders and Makers. This will allow them to have a platform where they can build securely and with confidence that the infrastructure will provide them with what they need.

<div style="width:100%;height:160px;border:0,margin:0;overflow: hidden;">[[File:OWASP_Project_Header.jpg|link=]]</div>

{| style="padding: 0;margin:0;margin-top:10px;text-align:left;" |-
| valign="top" style="border-right: 1px dotted gray;padding-right:25px;" |

==OWASP Virtual Village Project ==




==Description==

Owasp Virtual Lab will provide users with access to numerous operating systems Desktop as well as Servers. They will be able to create custom apps for other owasp projects they will also be able to request test environments , or honey pots , etc.

{|
|-
{{#ev:youtube|FCiqIf5h4Mc}}
|}





==Licensing==

TBD



| valign="top" style="padding-left:25px;width:200px;border-right: 1px dotted gray;padding-right:25px;" |

== Project Resources ==


https://github.com/owasp

== Project Chapter ==
[http://www.meetup.com/OWASP-NYC/ NYC Metro]

== Project Leader ==


Project leader's name:

Evin Hernandez

Tom Brennan

== Related Projects ==

N/A

==Classifications==

{| width="200" cellpadding="2"
|-
| colspan="2" align="center" | [[File:Project_Type_Files_TOOL.jpg|link=https://www.owasp.org/index.php/Category:OWASP_Tool]]
|-
| align="center" valign="top" width="50%" rowspan="2"| [[File:Owasp-incubator-trans-85.png|link=https://www.owasp.org/index.php/OWASP_Project_Stages#tab=Incubator_Projects|Incubator Project]]
| align="center" valign="top" width="50%"| [[File:Owasp-builders-small.png|link=Builders]]
|-
| align="center" valign="top" width="50%"| [[File:Owasp-defenders-small.png|link=Defenders]]
|-
| colspan="2" align="center" |
|}

| valign="top" style="padding-left:25px;width:200px;" |

== News and Events ==

[https://www.nyi.net/media/more/nyi_is_home_to_the_first_owasp_virtual_lab 3 June 2015 Press Release]




|}

=FAQs=




==How can I participate in your project?==
All you have to do is make the Project Leader's aware of your available time to contribute to the project. It is also important to let the Leader's know how you would like to contribute and pitch in to help the project meet it's goals and milestones. There are many different ways you can contribute to an OWASP Project, but communication with the leads is key.

==If I am not a programmer can I participate in your project?==
Yes, you can certainly participate in the project if you are not a programmer or technical. The project needs different skills and expertise and different times during its development. Currently, we are looking for researchers, writers, graphic designers, and a project administrator. See the Road Map and Getting Involved tab for more details.

= Acknowledgements =
==Contributors==




The first contributors to the project were:
* [http://www.nestedx2.com/#!about/c13zq Evin Hernandez ]
* [https://www.owasp.org/index.php/User:Brennan Tom Brennan]
* [http://www.njit.edu/ New Jersey Institute of Technology (NJIT)]
*DevPatel
*Komal Patel
* Urvashi Patel
* Robin Reyes (PM)

= Road Map and Getting Involved =




==Roadmap==

Project Roadmap: consist of A dev / test environment initially taking request via email. Eventually users with be able to sign and and request specific resources correlated to a specific project.

As of May, 2016, the highest priorities for the next 6 months are:

* Obtain software
* Configure and install Software
* Provide access to owasp members and host a few owasp projects.


==Getting Involved==
Involvement in the development and promotion of Virtual Village is actively encouraged!
You do not have to be a security expert or a programmer to contribute.
Some of the ways you can help are as follows:

===Coding===
We could implement some of the later items on the roadmap sooner if someone wanted to help out with unit or automated regression tests
===Localization===
Are you fluent in another language? Can you help translate the text strings in the Tool Project Template into that language?

===Testing===
Do you have a flair for finding bugs in software? We want to product a high quality product, so any help with Quality Assurance would be greatly appreciated. Let us know if you can offer your help.
===Feedback===
Please use the [https://lists.owasp.org/mailman/listinfo/OWASP_Tool_Project_Template Tool Project Template project mailing list] for feedback about:
<ul>
<li>What do like?</li>
<li>What don't you like?</li>
<li>What features would you like to see prioritized on the roadmap?</li>
</ul>

=Minimum Viable Product=



The Virtual Village Project will provide a platform for members to use for lab, incubator and flagship projects.

=Project About=



{{:Projects/OWASP_Example_Project_About_Page}}

__NOTOC__ <headertabs />

[[Category:OWASP Project]] [[Category:OWASP_Builders]] [[Category:OWASP_Defenders]] [[Category:OWASP_Tool]]

OWASP Virtual Village Project

2016-05-03T22:57:40Z

H4x0rdi3: /* Road Map and Getting Involved */

=Main=

Deliverable:
To provide a stable platform of multiple operating systems, Desktop / Servers for Breakers, Defenders and Makers. This will allow them to have a platform where they can build securely and with confidence that the infrastructure will provide them with what they need.

<div style="width:100%;height:160px;border:0,margin:0;overflow: hidden;">[[File:OWASP_Project_Header.jpg|link=]]</div>

{| style="padding: 0;margin:0;margin-top:10px;text-align:left;" |-
| valign="top" style="border-right: 1px dotted gray;padding-right:25px;" |

==OWASP Virtual Village Project ==




==Description==

Owasp Virtual Lab will provide users with access to numerous operating systems Desktop as well as Servers. They will be able to create custom apps for other owasp projects they will also be able to request test environments , or honey pots , etc.

{|
|-
{{#ev:youtube|FCiqIf5h4Mc}}
|}





==Licensing==

TBD



| valign="top" style="padding-left:25px;width:200px;border-right: 1px dotted gray;padding-right:25px;" |

== Project Resources ==


https://github.com/owasp

== Project Chapter ==
[http://www.meetup.com/OWASP-NYC/ NYC Metro]

== Project Leader ==


Project leader's name:

Evin Hernandez

Tom Brennan

== Related Projects ==

N/A

==Classifications==

{| width="200" cellpadding="2"
|-
| colspan="2" align="center" | [[File:Project_Type_Files_TOOL.jpg|link=https://www.owasp.org/index.php/Category:OWASP_Tool]]
|-
| align="center" valign="top" width="50%" rowspan="2"| [[File:Owasp-incubator-trans-85.png|link=https://www.owasp.org/index.php/OWASP_Project_Stages#tab=Incubator_Projects|Incubator Project]]
| align="center" valign="top" width="50%"| [[File:Owasp-builders-small.png|link=Builders]]
|-
| align="center" valign="top" width="50%"| [[File:Owasp-defenders-small.png|link=Defenders]]
|-
| colspan="2" align="center" |
|}

| valign="top" style="padding-left:25px;width:200px;" |

== News and Events ==

[https://www.nyi.net/media/more/nyi_is_home_to_the_first_owasp_virtual_lab 3 June 2015 Press Release]




|}

=FAQs=




==How can I participate in your project?==
All you have to do is make the Project Leader's aware of your available time to contribute to the project. It is also important to let the Leader's know how you would like to contribute and pitch in to help the project meet it's goals and milestones. There are many different ways you can contribute to an OWASP Project, but communication with the leads is key.

==If I am not a programmer can I participate in your project?==
Yes, you can certainly participate in the project if you are not a programmer or technical. The project needs different skills and expertise and different times during its development. Currently, we are looking for researchers, writers, graphic designers, and a project administrator. See the Road Map and Getting Involved tab for more details.

= Acknowledgements =
==Contributors==




The first contributors to the project were:
* [http://www.nestedx2.com/#!about/c13zq Evin Hernandez ]
* [https://www.owasp.org/index.php/User:Brennan Tom Brennan]
* [http://www.njit.edu/ New Jersey Institute of Technology (NJIT)]
*DevPatel
*Komal Patel
* Urvashi Patel
* Robin Reyes (PM)

= Road Map and Getting Involved =




==Roadmap==

Project Roadmap: consist of A dev / test environment initially taking request via email. Eventually users with be able to sign and and request specific resources correlated to a specific project.

As of May, 2016, the highest priorities for the next 6 months are:

* Obtain software
* Configure and install Software
* Provide access to owasp members and host a few owasp projects.


==Getting Involved==
Involvement in the development and promotion of Virtual Village is actively encouraged!
You do not have to be a security expert or a programmer to contribute.
Some of the ways you can help are as follows:

===Coding===
We could implement some of the later items on the roadmap sooner if someone wanted to help out with unit or automated regression tests
===Localization===
Are you fluent in another language? Can you help translate the text strings in the Tool Project Template into that language?
===Testing===
Do you have a flair for finding bugs in software? We want to product a high quality product, so any help with Quality Assurance would be greatly appreciated. Let us know if you can offer your help.
===Feedback===
Please use the [https://lists.owasp.org/mailman/listinfo/OWASP_Tool_Project_Template Tool Project Template project mailing list] for feedback about:
<ul>
<li>What do like?</li>
<li>What don't you like?</li>
<li>What features would you like to see prioritized on the roadmap?</li>
</ul>

=Minimum Viable Product=



The Virtual Village Project will provide a platform for members to use for lab, incubator and flagship projects.

=Project About=



{{:Projects/OWASP_Example_Project_About_Page}}

__NOTOC__ <headertabs />

[[Category:OWASP Project]] [[Category:OWASP_Builders]] [[Category:OWASP_Defenders]] [[Category:OWASP_Tool]]