This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org

OWASP Knowledge Graph

From OWASP
Jump to: navigation, search
OWASP Inactive Banner.jpg


OWASP Knowledge Graph

A tool that makes possible to consult the knowledge base providing informations about web vulnerabilities, the tool will also provide a way to check servers detecting vulnerabilities contained in knowledge base.

Description

This project uses the knowledge graphs to represent web vulnerabilities into a knowledge base. Using this base will be possible to detect vulnerabilities in systems and have a better understand of how they work.


Licensing

This program is free software: you can redistribute it and/or modify it under the terms of the link GNU General Public License 3.0 as published by the Free Software Foundation.

Project Resources

  • key files are being translated and will be available soon.

Project Leader

Cicero Gadelha

Related Projects

Classifications

Project Type Files TOOL.jpg
Incubator Project Owasp-builders-small.png
Owasp-breakers-small.png
Affero General Public License 3.0

News and Events

  • First meeting, Chapter Fortaleza


How can I participate in your project?

The project is at the very beginning and there are many possibilities, please get in contact with:

If I am not a programmer can I participate in your project?

Absolutely yes.

Team

  • Felipe Albuquerque

The OWASP Knowledge Graph is selecting members for the team.

If you would like to contribute please contact:

Roadmap

  1. Define the graph structure to store data in a efficient way.
  2. Represent in graphs the top 10 vulnerabilities.
  3. Create a tool to use the knowledge graph to detect vulnerabilities and explore theirs caracteristics.
  4. Conduct an evaluation of results.
  5. Expand the knwoledge graph storing more vulnerabilities.

Subsequent Releases will add

Getting Involved

Creation of a model that provides:

  1. Creation of Graphs using triples.
  2. Representation of vulnerabilities.
  3. Study, detect and explore vulnerabilities.