Revision as of 00:27, 17 August 2013

OWASP Global Projects Report

• Project Numbers
  • Active Projects: 169
  • Inactive Projects: 67

• New Projects
  • OWASP SecLists Project

• Projects Under Review
  • OWASP Cheat Sheets Project
  • OWASP Java HTML Sanitizer Project
  • Xenotix XSS Exploit Framework
  • OWASP Cornucopia Project
  • OWASP Java Encoder Project
  • Project reviews are on hold until we can fill the Technical Project Advisor volunteer roles.

Currently Working On

• Project Summit: AppSec USA 2013
  • I continue to plan the logistics for the project summit taking place at AppSec USA this year.
  • I continue to gather estimates, flight, and roadmap details from Leaders.
  • I am now closer to finalizing the travel arrangements for each project leader.
  • Moreover, we are in the process of organizing the schedule of project talks for the conference days.

• Technical Project Advisors: Status Update
  • The advisors and I met early this week to discuss how to move forward with our task.
  • This was our second meeting.
  • Our goal is to develop a sustainable/scalable project review system for our OWASP Projects.
  • The first meeting consisted of an orientation presentation, and a question and answer session.
  • During the second meeting, we discussed our thoughts on the current Projects Infrastructure, as well as the processes and procedures that are in place to operationally manage OWASP Projects.
  • Many different observations were brought forward and discussed among the team.
  • Next step 1: Advisors to review current project inventory.
  • Next step 2: Advisors to develop a list of successful/Flagship project's Best Practices, and be ready to share and discuss the list on our next meeting.

• Women in AppSec: AppSec USA 2013
  • We have now reached our fundraising goal for the year.
  • Despite reaching our goal, the team is working hard to fundraise for a third winner.
  • The call for entries is now live, as well.
  • Women in AppSec Application Form.
  • The application deadline is Monday, September 09, 2013 at 5pm GMT.
  • The deadline for sponsors is Monday, September 09, 2013, as well.

• OWASP Marketing
  • I continue to work with Design Foundry and the OWASP Ops Team to finalize Phase 3 of our Marketing Project.
  • We are in the final stages of development and design.
  • Patrick, Design Foundry's graphic designer, is working hard to get our work completed.
  • We hope to have all of our designs finalized by mid-August.
  • We are also seeking community feedback on several key design pieces.
  • Marketing Community Feedback Wiki Page

• OWASP at Black Hat
  • I have just come back from Las Vegas where I attended Black Hat and DEF CON.
  • I helped with the OWASP Booth at Black Hat, and met with quite a few people that had questions about our programs.
  • Overall, it was a very productive time.
  • We made many great connections that I have followed up with, this week.

• Daily Project based queries and requests
  • This has not changed much since I began the post: questions are very similar in nature.
  • Global AppSec questions.
  • Funding queries.
  • Travel availability.
  • Project based administrative help.
  • Project status information.
  • Several project donation questions.
  • Marketing questions.
  • Grant funding questions.
  • OWASP social media updates.
  • What's happening with projects, questions.

Project Funding Updates

• OWASP OWTF Project: Brucon 5x5 Award

1. Amount: €5,000.00 (Approx. $6,670.00)
2. Status: Awarded. Congratulations, Abraham Aranguren and all involved in the project, for your award.

• OWASP OWTF Grant Proposal

1. Amount: $55,800 USD
2. Status: This proposal is complete, and has been submitted.

• OWASP AppSensor Grant Proposal

1. Amount: $15,000 USD
2. Status: This proposal is complete, and has been submitted.

• OWASP OpenSAMM Grant Proposal

1. Amount: $112,000 USD
2. Status: This proposal is complete, and has been submitted.

• OWASP Guidebooks Proposal

1. Amount: $25,000 USD
2. Status: Awarded. The first payment has been allocated to our project budgets. The second invoice has now been sent to Georgia Tech for payment.
3. OWASP Development Guide Plan
4. OWASP Testing Guide Plan
5. OWASP Code Review Guide Plan

• OWASP ESAPI Grant Proposal

1. Amount: $25,000 USD
2. Status: The ESAPI proposal is still being reviewed.

• OWASP ModSecurity CRS Proposal

1. Amount: $30,000 USD
2. Status: The ModSecurity proposal is still being reviewed.

• Google Grants Proposal

1. Amount: $120,000 USD in Adwords Funds
2. Status: Awarded.
3. Note: There is no link to show the proposal for this grant. There was a form that was submitted to Google, and we did not receive a record of this form.

• European Commission Grant Proposal

1. Amount: €250,000
2. Status: Denied.

• Google Summer of Code

1. Amount: $5,500
2. Status: Awarded

• Projects breakdown:
  • 4 ZAP Projects: $2,000
  • 4 OWTF Projects: $2,000
  • 1 PHP Security Project: $500
  • 1 Hackademics Project: $500
  • 1 Modsecurity Project: $500
  • Note: Big thank you to Fabio Cerullo for coordinating and managing this award.

• Total Funds Awarded: $157,170 USD for 2013.