This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org
Difference between revisions of "OWASP Zezengorri Code Project"
(→Project Leader) (Tag: Visual edit) |
(→News and Events) (Tag: Visual edit) |
||
| Line 64: | Line 64: | ||
* [1 Nov 2017] Release Page Explain the Concept, with a white Paper | * [1 Nov 2017] Release Page Explain the Concept, with a white Paper | ||
* [19 Jan 2018] 1.0 Release Candidate is available for download. This release provides final bug fixes and product stabilization. Any feedback (good or bad) in the next few weeks would be greatly appreciated. | * [19 Jan 2018] 1.0 Release Candidate is available for download. This release provides final bug fixes and product stabilization. Any feedback (good or bad) in the next few weeks would be greatly appreciated. | ||
| + | * [3 Apr 2018] The Inacap Institute and their students also start to participate in the Zezengorri owasp https://www.inacap.cl/tportalvp/alumnos. | ||
|} | |} | ||
Revision as of 16:09, 29 March 2018
OWASP Code Library ProjectThis is Zezengorri a library to allows you to add security in the development IDE from the day one, of the moment you decide implement security development to your projects, starting in design phase of new projects, and in old projects for see what you miss detecting the vulnerabilities of the web server, the computer and the programming language before starting the development on in parallel with the Lifecycle software development. DescriptionWhen developers, team leaders or project managers add security to a web application, the first thing that comes up is the question of which technologies are handled in my web project, what operating system the web server supports, what version of server or what version of the database the application uses, for this Owasp define the threat modeling (knowing what we have). This project Zezengorri is a code library is a downloadable package that adheres to the root of the web project, and from them this can, analyzes and seeks to collect in a simple web page the characteristics of all the security components for examples: if our website uses or not HSTS, the versions of Chipset active, the use of SSL certificate for the web page among other securities characteristics important measure in the during the life cycle development software . Each of these item is display in a new web page in a list of item any show if is active or not, the version of the plugin and a web link. That links redirect to the CVE page and the CVE score of this item. determine if the project can be promoted to the next category. The information requested is also intended to help Project Leaders think about the road map and feature priorities, and give guidance to the reviews as a result of that effort. Creating a new set of project pages from scratch can be a challenging task. By providing a sample layout, with instructional text and examples, the OWASP Code Project Template makes it easier for Project Leaders to create effective security projects and hence helps promote security. LicensingThis program is free software: you can redistribute it and/or modify it under the terms of these
as published by the Free Software Foundation, either version 3 of the License, or (at your option) any later version. OWASP and any contributions are Copyright © by OWASP Years 2017-2018. |
Project ResourcesProject LeaderProject leader's name:Gustavo Nieves Arreaza Volunteers : Lubyn Rodriguez(Project Managment) Related ProjectsOwasp Secure Coding Practiques Classifications
|
News and Events
| |||||||
