This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org

Difference between revisions of "OWASP WASC Web Hacking Incidents Database Project"

From OWASP
Jump to: navigation, search
(Quick Download)
(Quick Download)
Line 52: Line 52:
 
* [http://www.google.com/fusiontables/embedviz?gco_chartArea=%7B%22top%22%3A%2230%22%7D&containerId=gviz_canvas&q=select+col4%2C+count()+from+930451++group+by++col4+skip+0+limit+20&viz=GVIZ&t=PIE&width=1200&height=900 Top App Weaknesses]
 
* [http://www.google.com/fusiontables/embedviz?gco_chartArea=%7B%22top%22%3A%2230%22%7D&containerId=gviz_canvas&q=select+col4%2C+count()+from+930451++group+by++col4+skip+0+limit+20&viz=GVIZ&t=PIE&width=1200&height=900 Top App Weaknesses]
 
* [http://www.google.com/fusiontables/embedviz?gco_chartArea=%7B%22top%22%3A%2230%22%7D&containerId=gviz_canvas&q=select+col5%2C+count()+from+930451++group+by++col5+skip+0+limit+24&viz=GVIZ&t=PIE&width=1200&height=900 Top Outcomes]
 
* [http://www.google.com/fusiontables/embedviz?gco_chartArea=%7B%22top%22%3A%2230%22%7D&containerId=gviz_canvas&q=select+col5%2C+count()+from+930451++group+by++col5+skip+0+limit+24&viz=GVIZ&t=PIE&width=1200&height=900 Top Outcomes]
* [https://www.google.com/fusiontables/DataSource?snapid=S283929Jw2s Live WHID (Google Fusion Tables)]
+
* [https://www.google.com/fusiontables/DataSource?snapid=S283929Jw2s Full WHID (Google Fusion Tables)]
  
 
== News and Events ==
 
== News and Events ==

Revision as of 19:33, 18 February 2014

OWASP Project Header.jpg

OWASP WASC Web Hacking Incidents Database Project

The OWASP WASC Web Hacking Incidents Database Project is a project dedicated to maintaining a list of web applications related security incidents.

Description

WHID goal is to serve as a tool for raising awareness of the web application security problem and provide information for statistical analysis of web applications security incidents. The database is unique in tracking only media reported security incidents that can be associated with a web application security vulnerability. This data is in contrast to many public statistics reports on vulnerability prevalence in that it shows what types of vulnerabilities attackers are actively exploiting.

Licensing

The OWASP WASC Web Hacking Incidents Database Project is free to use. It is licensed under the http://creativecommons.org/licenses/by-sa/3.0/ Creative Commons Attribution-ShareAlike 3.0 license], so you can copy, distribute and transmit the work, and you can adapt it, and use it commercially, but all provided that you attribute the work and if you alter, transform, or build upon this work, you may distribute the resulting work only under the same or similar license to this one.


What is WHID?

OWASP WHID provides:

  • Statistics of real-world web hacking incidents.
  • Threat-Views:
    • Consultant - Attack
    • Developer - Weakness
    • Business Owner - Outcome

Presentation

Project Leader

Related Projects

Quick Download

News and Events

  • [20 Nov 2013] News 2
  • [30 Sep 2013] News 1


In Print

This project can be purchased as a print on demand book from Lulu.com


Classifications

Owasp-incubator-trans-85.png Owasp-builders-small.png
Owasp-defenders-small.png
Cc-button-y-sa-small.png
Project Type Files DOC.jpg

Retrieved from "https://wiki.owasp.org/index.php?title=OWASP_WASC_Web_Hacking_Incidents_Database_Project&oldid=168398"