This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org
Difference between revisions of "Category:Python"
m (Redirected page to OWASP Python Project) |
m (Shifted from Project classification to wiki content classification as discussed with the OWASP board)) |
||
Line 1: | Line 1: | ||
− | + | ||
+ | <div style="width:100%;border:0,margin:0;overflow: hidden;">[[File:OWASP_Project_Header.jpg|link=]]</div> | ||
+ | = Main = | ||
+ | |||
+ | {| style="padding: 0;margin:0;margin-top:10px;text-align:left;" |- | ||
+ | | valign="top" style="border-right: 1px dotted gray;padding-right:25px;" | | ||
+ | |||
+ | CAUTION - THIS PAGE IS UNDER REVIEW BY OWASP MANAGEMENT TO DETERMINE IF IT IS A LEGITIMATE POSTING AS OF JANUARY 14, 2016. P.RITCHIE OWASP EXECUTIVE DIRECTOR | ||
+ | |||
+ | THE REAL 'OWASP PYTHON SECURITY PROJECT' PAGE WHICH HAS BEEN IN OFFICIAL OPERATION FOR SEVERAL YEARS CAN BE FOUND AT | ||
+ | https://www.owasp.org/index.php/OWASP_Python_Security_Project | ||
+ | P.RITCHIE OWASP EXECUTIVE DIRECTOR. | ||
+ | |||
+ | == About == | ||
+ | |||
+ | The Python technology knowledge base is the clearing house for all information related to building secure web/distributed applications and services based on Python and Python related technologies. The focus of the project is on guidance for developers and architects using Python frameworks and Python based technologies for web and distributed application development, on OWASP components that use Python and on participation in OWASP projects that use Python technologies. Moreover, we aim to provide security related guidance for system administrators managing Python and Python based applications and tools. | ||
+ | |||
+ | A different aspect is using Python as active languages for writing security related tools. Due to its presence on all kind of systems and the availability and power of security libraries, it is one of the major programming languages to implement security applications and scripts. | ||
+ | |||
+ | Community content is key to security information. The project depends on content from developers throughout the Python ecosystem. | ||
+ | |||
+ | ==Purpose== | ||
+ | |||
+ | * Provide deep, rich guidance for Python developers in using the security features of Python and of Python frameworks. | ||
+ | * Guide system administrators in managing Python and Python related components and applications. | ||
+ | * Create guidance for use of OWASP components that are designed for use with the Python platform. | ||
+ | * Focus on information about working with and on OWASP tools built using Python technologies. | ||
+ | * Provide a stream of security related information, like vulnerabilities and security patches, related to the Python universe. | ||
+ | * A different aspect is using Python as active languages for writing security related tools. | ||
+ | * Build an ecosystem allowing to all actors interested to discuss, share and learn. | ||
+ | |||
+ | |||
+ | |||
+ | == Licensing == | ||
+ | |||
+ | OWASP Python technology knowledge base is free to use. It is licensed under the http://creativecommons.org/licenses/by-sa/3.0/ Creative Commons Attribution-ShareAlike 3.0 license], so you can copy, distribute and transmit the work, and you can adapt it, and use it commercially, but all provided that you attribute the work and if you alter, transform, or build upon this work, you may distribute the resulting work only under the same or similar license to this one. | ||
+ | |||
+ | |||
+ | | valign="top" style="padding-left:25px;width:200px;border-right: 1px dotted gray;padding-right:25px;" | | ||
+ | |||
+ | == Team == | ||
+ | |||
+ | Lead: Under discussion. | ||
+ | |||
+ | <br/> | ||
+ | |||
+ | == Meta == | ||
+ | |||
+ | Last Update: 1/2016 | ||
+ | |||
+ | <br/> | ||
+ | |||
+ | == Other Resources == | ||
+ | |||
+ | |||
+ | <br/> | ||
+ | |||
+ | == Related Projects == | ||
+ | |||
+ | * [[OWASP_Project|Main Project Repository]] | ||
+ | * [[Language|Languages Repository]] | ||
+ | * [[OWASP_.NET_Project|OWASP .NET]] | ||
+ | * [[OWASP_Ruby_Project|OWASP Ruby]] | ||
+ | * [[OWASP_PHP_Project|OWASP PHP]] | ||
+ | * [[OWASP_C/C++_Project|OWASP C/C++]] | ||
+ | * [[OWASP_SQL_Project|OWASP SQL and PL/SQL]] | ||
+ | * [[OWASP_Internet_of_Things_Project|OWASP IoT Security]] | ||
+ | * [[OWASP_Mobile_Security_Project|OWASP Mobile Security]] | ||
+ | |||
+ | | valign="top" style="padding-left:25px;width:200px;" | | ||
+ | |||
+ | ==Classifications== | ||
+ | |||
+ | {| width="200" cellpadding="2" | ||
+ | |- | ||
+ | | colspan="2" align="center" | [[File:Cc-button-y-sa-small.png|link=http://creativecommons.org/licenses/by-sa/3.0/]] | ||
+ | |- | ||
+ | | | ||
+ | |} | ||
+ | |||
+ | |} | ||
+ | |||
+ | = Resources = | ||
+ | |||
+ | {| style="padding:0; margin:0; margin-top:10px; text-align:left; width:100%;" |- | ||
+ | | valign="top" style="border-right: 1px dotted gray; padding-right:25px; width:30%; float:left;" | | ||
+ | |||
+ | == Mailing List == | ||
+ | |||
+ | [https://lists.owasp.org/mailman/listinfo/owasp_python_security_project OWASP Python Security Project Mailing List] | ||
+ | |||
+ | | valign="top" style="padding-left:25px; width:30%; min-width:30%; border-right:1px dotted gray; padding-right:25px; float:left;" | | ||
+ | |||
+ | == Twitter Feed == | ||
+ | |||
+ | (none) | ||
+ | |||
+ | |||
+ | | valign="top" style="padding-left:25px; width:30%; float:left;" | | ||
+ | |||
+ | == Code Repository == | ||
+ | |||
+ | (none) | ||
+ | |||
+ | |} | ||
+ | |||
+ | == Related Project Resources == | ||
+ | |||
+ | [[OWASP_Project|OWASP Project Repository]] | ||
+ | |||
+ | [[Language|Programming Languages Repository]] | ||
+ | |||
+ | [[OWASP_.NET_Project|OWASP .NET Project]] | ||
+ | |||
+ | [[OWASP_C/C++_Project|OWASP C/C++]] | ||
+ | |||
+ | [[OWASP_Ruby_Project|OWASP Ruby]] | ||
+ | |||
+ | [[OWASP_PHP_Project|OWASP PHP]] | ||
+ | |||
+ | [[OWASP_SQL_Project|OWASP SQL and Scripting]] | ||
+ | |||
+ | |||
+ | [[OWASP_Internet_of_Things_Project|OWASP IoT Security Project]] | ||
+ | |||
+ | [[OWASP_Mobile_Security_Project|OWASP Mobile Security Project]] | ||
+ | |||
+ | |||
+ | |||
+ | |||
+ | |||
+ | |||
+ | |||
+ | = Project Pages = | ||
+ | |||
+ | == Tools Chain == | ||
+ | |||
+ | <TBD> | ||
+ | |||
+ | <br/> | ||
+ | |||
+ | <br/> | ||
+ | |||
+ | == Libraries == | ||
+ | |||
+ | {| width="100%" | ||
+ | | colspan="2" | [[OWASP_Python_Security_Project]] | ||
+ | |- | ||
+ | | width="20" | | ||
+ | | Python Security is a free, open source, OWASP project that aims at creating a hardened version of python that makes it easier for security professionals and developers to write applications more resilient to attacks and manipulations. The project is designed to explore how web applications can be developed in python by approaching the problem from three different angles: white-box analysis, structural and functional analysis, black-box analysis, identify and address security-related issues, develop security hardened python suitable for high-risk and high-security environments | ||
+ | | http://www.pythonsecurity.org/ | ||
+ | |- | ||
+ | | colspan="2" | | ||
+ | |- | ||
+ | | colspan="2" | | ||
+ | |- | ||
+ | | width="20" | | ||
+ | | | ||
+ | | | ||
+ | |} | ||
+ | |||
+ | <br/> | ||
+ | |||
+ | <br/> | ||
+ | |||
+ | == General Documents == | ||
+ | |||
+ | {| width="100%" | ||
+ | | [[OWASP_Secure_Coding_Practices_-_Quick_Reference_Guide|OWASP Secure Coding Practices - Quick Reference Guide]] | ||
+ | | [[OWASP_Codes_of_Conduct|OWASP Codes of Conduct]] | ||
+ | | [[Cheat_Sheets|OWASP Cheat Sheets Series]] | ||
+ | |- | ||
+ | | [[OWASP_Testing_Project|OWASP Testing Project]] | ||
+ | | [[OWASP_Top_Ten_Project|OWASP Web Top 10]] | ||
+ | | [[OWASP_Vulnerable_Web_Applications_Directory_Project|OWASP Vulnerable Web Applications Directory]] | ||
+ | |} | ||
+ | |||
+ | <br/> | ||
+ | |||
+ | <br/> | ||
+ | |||
+ | = Tasks and Roadmap = | ||
+ | |||
+ | |||
+ | == Ongoing Operations == | ||
+ | |||
+ | (coming soon) | ||
+ | |||
+ | {| width="100%" | ||
+ | | colspan="2" | | ||
+ | |- | ||
+ | | width="20" | | ||
+ | | | ||
+ | |} | ||
+ | |||
+ | <br/> | ||
+ | |||
+ | == Upcoming Operations == | ||
+ | |||
+ | None at the moment. | ||
+ | |||
+ | <br/> | ||
+ | |||
+ | == Ideas == | ||
+ | |||
+ | If you have ideas for new operations, documentations, documents, projects, please drop a line on the mailing list or in a mail to project team. | ||
+ | |||
+ | {| width="100%" | ||
+ | | colspan="2" | Python security related net resources guide | ||
+ | |- | ||
+ | | width="20" | | ||
+ | | The Python Project is principally about creating deep, rich guidance for Python developers using all kind of security resources. The idea is to have an effort of building a internet resource guide for everything around the Python universe. Information, blogs, articles, tools, test servers and more. Important however is that this list is seriously curated. | ||
+ | |- | ||
+ | | colspan="2" | | ||
+ | |- | ||
+ | | colspan="2" | Concrete guideline for Python developers | ||
+ | |- | ||
+ | | width="20" | | ||
+ | | Clear checklists, around various topics, language, servers and frameworks. | ||
+ | |} | ||
+ | |||
+ | <br/> | ||
+ | == Archived Operations == | ||
+ | |||
+ | None at the moment. | ||
+ | |||
+ | <br/> | ||
+ | |||
+ | |||
+ | |||
+ | |||
+ | |||
+ | |||
+ | |||
+ | |||
+ | = Get involved = | ||
+ | |||
+ | There are many ways of getting involved in an OWASP wiki bases. | ||
+ | |||
+ | The first step would be to establish contact with the project leaders and/or the entire team. This can be done using a direct and private message, or by joining the public mailing list to say hello. | ||
+ | |||
+ | When it comes to participating in project activities, everything depends on the time you are willing and able to invest. It is however very important to not jump into too many things at the beginning, later having to back out or to let unfinished things behind you. It is much better to start with small tasks, increasing intensity and investment over time. | ||
+ | |||
+ | Please also be patient with expecting the "merge" of your work into the existing project pages and code. As everywhere in live, trust has to be built-up. | ||
+ | |||
+ | The Python Project has currently multiple tasks open, which can be found on the adequate section of this page. Not all tasks require a wiki account. Please take something you are interested in and start participating. | ||
+ | Work load is not the only outcome when participating in open projects. You are getting a lot of things back: recognition, satisfaction, knowledge and contacts, sometime friends. | ||
+ | |||
+ | Sounds cool? Then jump in... | ||
+ | |||
+ | |||
+ | |||
+ | |||
+ | |||
+ | |||
+ | |||
+ | |||
+ | |||
+ | |||
+ | |||
+ | |||
+ | = Archives = | ||
+ | |||
+ | (Nothing yet) | ||
+ | |||
+ | <hr/> | ||
+ | |||
+ | |||
+ | |||
+ | |||
+ | |||
+ | |||
+ | |||
+ | |||
+ | |||
+ | __NOTOC__ | ||
+ | <headertabs /> | ||
+ | |||
+ | <br/> | ||
+ | |||
+ | |||
+ | '''IMPORTANT: all pages of these project are currently under review. A lot are outdated and are in the process of being removed or updated.''' | ||
+ | |||
+ | <!-- Wikimedia insert classified list here --> | ||
+ | |||
+ | [[Category:Technology]] | ||
+ | [[Category:Language]] |
Revision as of 11:39, 20 January 2016
CAUTION - THIS PAGE IS UNDER REVIEW BY OWASP MANAGEMENT TO DETERMINE IF IT IS A LEGITIMATE POSTING AS OF JANUARY 14, 2016. P.RITCHIE OWASP EXECUTIVE DIRECTOR THE REAL 'OWASP PYTHON SECURITY PROJECT' PAGE WHICH HAS BEEN IN OFFICIAL OPERATION FOR SEVERAL YEARS CAN BE FOUND AT https://www.owasp.org/index.php/OWASP_Python_Security_Project P.RITCHIE OWASP EXECUTIVE DIRECTOR. AboutThe Python technology knowledge base is the clearing house for all information related to building secure web/distributed applications and services based on Python and Python related technologies. The focus of the project is on guidance for developers and architects using Python frameworks and Python based technologies for web and distributed application development, on OWASP components that use Python and on participation in OWASP projects that use Python technologies. Moreover, we aim to provide security related guidance for system administrators managing Python and Python based applications and tools. A different aspect is using Python as active languages for writing security related tools. Due to its presence on all kind of systems and the availability and power of security libraries, it is one of the major programming languages to implement security applications and scripts. Community content is key to security information. The project depends on content from developers throughout the Python ecosystem. Purpose
LicensingOWASP Python technology knowledge base is free to use. It is licensed under the http://creativecommons.org/licenses/by-sa/3.0/ Creative Commons Attribution-ShareAlike 3.0 license], so you can copy, distribute and transmit the work, and you can adapt it, and use it commercially, but all provided that you attribute the work and if you alter, transform, or build upon this work, you may distribute the resulting work only under the same or similar license to this one.
|
TeamLead: Under discussion.
MetaLast Update: 1/2016
Other Resources
Related Projects |
Classifications |
Mailing List |
Twitter Feed(none)
|
Code Repository(none) |
Related Project Resources
Programming Languages Repository
Tools Chain
<TBD>
Libraries
OWASP_Python_Security_Project | ||
Python Security is a free, open source, OWASP project that aims at creating a hardened version of python that makes it easier for security professionals and developers to write applications more resilient to attacks and manipulations. The project is designed to explore how web applications can be developed in python by approaching the problem from three different angles: white-box analysis, structural and functional analysis, black-box analysis, identify and address security-related issues, develop security hardened python suitable for high-risk and high-security environments | http://www.pythonsecurity.org/ | |
General Documents
OWASP Secure Coding Practices - Quick Reference Guide | OWASP Codes of Conduct | OWASP Cheat Sheets Series |
OWASP Testing Project | OWASP Web Top 10 | OWASP Vulnerable Web Applications Directory |
Ongoing Operations
(coming soon)
Upcoming Operations
None at the moment.
Ideas
If you have ideas for new operations, documentations, documents, projects, please drop a line on the mailing list or in a mail to project team.
Python security related net resources guide | |
The Python Project is principally about creating deep, rich guidance for Python developers using all kind of security resources. The idea is to have an effort of building a internet resource guide for everything around the Python universe. Information, blogs, articles, tools, test servers and more. Important however is that this list is seriously curated. | |
Concrete guideline for Python developers | |
Clear checklists, around various topics, language, servers and frameworks. |
Archived Operations
None at the moment.
There are many ways of getting involved in an OWASP wiki bases.
The first step would be to establish contact with the project leaders and/or the entire team. This can be done using a direct and private message, or by joining the public mailing list to say hello.
When it comes to participating in project activities, everything depends on the time you are willing and able to invest. It is however very important to not jump into too many things at the beginning, later having to back out or to let unfinished things behind you. It is much better to start with small tasks, increasing intensity and investment over time.
Please also be patient with expecting the "merge" of your work into the existing project pages and code. As everywhere in live, trust has to be built-up.
The Python Project has currently multiple tasks open, which can be found on the adequate section of this page. Not all tasks require a wiki account. Please take something you are interested in and start participating. Work load is not the only outcome when participating in open projects. You are getting a lot of things back: recognition, satisfaction, knowledge and contacts, sometime friends.
Sounds cool? Then jump in...
(Nothing yet)
IMPORTANT: all pages of these project are currently under review. A lot are outdated and are in the process of being removed or updated.
Pages in category "Python"
The following 2 pages are in this category, out of 2 total.