This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org

Difference between revisions of "Projects/Reports/2013-20-09"

From OWASP
Jump to: navigation, search
(Created page with "__TOC__ = OWASP Global Projects Report = *'''[https://docs.google.com/spreadsheet/ccc?key=0AllOCxlYdf1AdHBGbDhXQko4akJoVnMtMUpvZnJucVE&usp=sharing Project Numbers]''' **Activ...")
 
 
(7 intermediate revisions by the same user not shown)
Line 3: Line 3:
  
 
*'''[https://docs.google.com/spreadsheet/ccc?key=0AllOCxlYdf1AdHBGbDhXQko4akJoVnMtMUpvZnJucVE&usp=sharing Project Numbers]'''
 
*'''[https://docs.google.com/spreadsheet/ccc?key=0AllOCxlYdf1AdHBGbDhXQko4akJoVnMtMUpvZnJucVE&usp=sharing Project Numbers]'''
**Active Projects: 138
+
**Active Projects: 139
 
**Inactive Projects: 103
 
**Inactive Projects: 103
  
 
*'''[https://docs.google.com/spreadsheet/ccc?key=0Amvv_7Gz8Z7TdHZfWGhHZ0Z4UFFwZU42djBXcVVLSlE&usp=sharing New Project Applications]'''
 
*'''[https://docs.google.com/spreadsheet/ccc?key=0Amvv_7Gz8Z7TdHZfWGhHZ0Z4UFFwZU42djBXcVVLSlE&usp=sharing New Project Applications]'''
**OWASP This I Believe (Security) Project
+
**OWASP Pygoat Project
  
 
*'''New OWASP Projects'''
 
*'''New OWASP Projects'''
**[https://www.owasp.org/index.php/OWASP_Media_Project OWASP Media Project]
+
**[https://www.owasp.org/index.php/OWASP_This_I_Believe_Security_Project OWASP This I Believe Security Project]
**[https://www.owasp.org/index.php/OWASP_Global_Chapter_Meetings_Project OWASP Global Chapter Meetings Project]
 
**[https://www.owasp.org/index.php/OWASP_JAWS_Project OWASP JAWS Project]  
 
  
 
*'''Projects Under Review'''
 
*'''Projects Under Review'''
Line 25: Line 23:
  
 
*'''Technical Project Advisors: Work Update'''
 
*'''Technical Project Advisors: Work Update'''
**The Advisors and I met this week to discuss their test reviews of the following projects:
+
**I have put together another version of the [https://docs.google.com/spreadsheet/ccc?key=0AllOCxlYdf1AdHh3UzV6RGcxblhkcDFtUHlCMmQwMnc&usp=sharing project assessment criteria].
***[https://www.owasp.org/index.php/OWASP_Java_HTML_Sanitizer_Project OWASP Java HTML Sanitizer Project] (Complete)
+
**This version was based on the first test assessments conducted by the advisors.
***[https://www.owasp.org/index.php/OWASP_Cornucopia OWASP Cornucopia Project] (Complete)
+
**This version eliminates redundancies between the product assessment and the project health assessment.
***[https://www.owasp.org/index.php/OWASP_Java_Encoder_Project OWASP Java Encoder Project] (Complete)
+
**Additionally, we have separated out the focus of each assessment.
**We went into a good amount of detail describing our experiences with the test assessments during our meeting.  
+
**The Project Assessment focuses on the project health based on OWASP best practices.
**We primarily found major redundancies throughout the assessment questions on both types of assessment. (Health and deliverable review)
+
**The Product Assessment focuses on the quality of the deliverable.  
**We concluded that we will need to remove the redundancies, and create another version of the criteria that we can then re-test using the same projects above.
 
**We also discussed the inconsistency between all three project templates.
 
**We all agreed that the Cornucopia Project template is very visually appealing and easy to read.
 
**It is a great example of what we would like OWASP project wiki templates to look like.
 
**We decided to use the Cornucopia Project template as a starting point for creating a new wiki template for OWASP Projects.  
 
  
 
*'''Women in AppSec: AppSec USA 2013'''
 
*'''Women in AppSec: AppSec USA 2013'''
**The application period is now closed for the Women in AppSec Program for 2013.
+
**The Women in AppSec grading has now begun.
**We had a total of 36 respondents that applied to the program.  
+
**Kait, our new Grants & Fundraising intern, has been helping with the administrative work for the program.
**We are now in the process of collecting reference letters for all of the applicants.
+
**We have collected the letters of recommendation sent to us from each of our applicant's references.  
**I am also creating grading sheets so the selection team can split the initial grading of the candidates.
+
**We have separated them out, and placed them into the folders of each selection committee member.  
**Candidates will be invited for a telephone interview with the selection team based on their scores.  
+
**We intend to finish the grading by September 23rd.  
  
 
*'''[http://owasp.blogspot.com/2013/09/meet-our-new-grants-and-fundraising.html Meet our new Grants & Fundraising Intern]'''
 
*'''[http://owasp.blogspot.com/2013/09/meet-our-new-grants-and-fundraising.html Meet our new Grants & Fundraising Intern]'''
**My search for a Grants & Fundraising intern is now over.
+
**Our Grants & Fundraising intern has now gone through the orientation process, and she has begun to work on program activities.
**Kait Disney-Leugers has been chosen to take on the internship.
+
**She has been working on getting set up on the wiki, and learning how to create and edit wiki pages.
**I am currently setting her up with all of her accounts, and I have sent her an orientation packet.
+
**Kait will be putting together the content for the Women in AppSec Program Page.
**We will be having a phone based orientation on Monday.
+
**Additionally, she is putting together content for our marketing page.  
 +
**You can read more about her week by reading her [https://www.owasp.org/index.php/Projects/Internships/Grants_and_Fundraising_Intern/Kait_Disney_Leugers#tab=Biography Intern Weekly Report].
 
**Start Date: Monday, September 16th 2013.
 
**Start Date: Monday, September 16th 2013.
 
**Internship End Date: Monday, January 13th 2014.
 
**Internship End Date: Monday, January 13th 2014.
  
*'''Projects at Conferences'''
+
*'''Grants and Fundraising Strategy'''
**The schedule for our Project Summit talks is now complete, and it is now updated on the [http://appsecusa.org/2013/schedule/ AppSec USA website].  
+
**I now have more time to work on strategic planning for projects, grants, and fundraising since Kait is helping with the admin work for several of our programs.
**We now have 10 projects participating in the summit this year.
+
**I have been working on outlining and writing the grants and fundraising strategy to raise funds for projects and programs for 2014.  
**The O2 Project was the final addition to this year's lineup.
+
**This week, I worked on developing the strategy outline, and I am analyzing the macro and micro environment OWASP exists within.  
**There is now only one project leader that is left to book his travel.  
 
  
*'''OWASP Global Marketing'''
+
*'''Google for Non-Profits: YouTube Channel'''
**I spoke with our graphic design contractor this Monday, and we worked out a schedule of delivery for the final pieces.
+
**I helped Project Leader, Jonathan Marcil, submit an application too Google for Non-Profits on behalf of OWASP.
**Brand Guidelines (we just need the final pdf): Delivery by Monday, Sept. 16th
+
**We had to apply to Google so we could link his YouTube channel to our foundation account with Google.
**Brand Reference Sheet: Delivery by Monday, Sept. 16th
+
** Unfortunately, the application was unsuccessful, twice.
**PPT Templates using the new logo: Delivery by Monday, Sept. 16th
+
**However, we managed to get it approved with a bit of persistence.
**About Us Flyer: (2 versions): Delivery by Wed, Sept. 18th.
+
**Jonathan is all set up to put together our official YouTube channel on behalf of the foundation.  
**New Member Welcome Letter Flyer (2 versions): Delivery by Wed, Sept. 18th.
+
**Thank you Jonathan for your hard work on this, and for taking this project on.  
**E-Brochure: Delivery by Monday, Sept. 23rd.  
 
**E-mail Newsletter Template: Delivery by Friday, Sept. 20th.
 
  
 
*'''Daily Project based queries and requests'''
 
*'''Daily Project based queries and requests'''

Latest revision as of 00:40, 21 September 2013

OWASP Global Projects Report

Currently Working On

  • Technical Project Advisors: Work Update
    • I have put together another version of the project assessment criteria.
    • This version was based on the first test assessments conducted by the advisors.
    • This version eliminates redundancies between the product assessment and the project health assessment.
    • Additionally, we have separated out the focus of each assessment.
    • The Project Assessment focuses on the project health based on OWASP best practices.
    • The Product Assessment focuses on the quality of the deliverable.
  • Women in AppSec: AppSec USA 2013
    • The Women in AppSec grading has now begun.
    • Kait, our new Grants & Fundraising intern, has been helping with the administrative work for the program.
    • We have collected the letters of recommendation sent to us from each of our applicant's references.
    • We have separated them out, and placed them into the folders of each selection committee member.
    • We intend to finish the grading by September 23rd.
  • Meet our new Grants & Fundraising Intern
    • Our Grants & Fundraising intern has now gone through the orientation process, and she has begun to work on program activities.
    • She has been working on getting set up on the wiki, and learning how to create and edit wiki pages.
    • Kait will be putting together the content for the Women in AppSec Program Page.
    • Additionally, she is putting together content for our marketing page.
    • You can read more about her week by reading her Intern Weekly Report.
    • Start Date: Monday, September 16th 2013.
    • Internship End Date: Monday, January 13th 2014.
  • Grants and Fundraising Strategy
    • I now have more time to work on strategic planning for projects, grants, and fundraising since Kait is helping with the admin work for several of our programs.
    • I have been working on outlining and writing the grants and fundraising strategy to raise funds for projects and programs for 2014.
    • This week, I worked on developing the strategy outline, and I am analyzing the macro and micro environment OWASP exists within.
  • Google for Non-Profits: YouTube Channel
    • I helped Project Leader, Jonathan Marcil, submit an application too Google for Non-Profits on behalf of OWASP.
    • We had to apply to Google so we could link his YouTube channel to our foundation account with Google.
    • Unfortunately, the application was unsuccessful, twice.
    • However, we managed to get it approved with a bit of persistence.
    • Jonathan is all set up to put together our official YouTube channel on behalf of the foundation.
    • Thank you Jonathan for your hard work on this, and for taking this project on.
  • Daily Project based queries and requests
    • This has not changed much since I began the post: questions are very similar in nature.
    • Global AppSec questions.
    • Funding queries.
    • Travel availability.
    • Project based administrative help.
    • Project status information.
    • Several project donation questions.
    • Marketing questions.
    • Grant funding questions.
    • OWASP social media updates.
    • What's happening with projects, questions.

Project Funding Updates

  • OWASP OWTF Project: Brucon 5x5 Award
  1. Amount: €5,000.00 (Approx. $6,670.00)
  2. Status: Awarded. Congratulations, Abraham Aranguren and all involved in the project, for your award.
  1. Amount: $55,800 USD
  2. Status: This proposal is complete, and has been submitted.
  1. Amount: $15,000 USD
  2. Status: This proposal is complete, and has been submitted.
  1. Amount: $112,000 USD
  2. Status: This proposal is complete, and has been submitted.
  1. Amount: $25,000 USD
  2. Status: Awarded. The first payment has been allocated to our project budgets. The second invoice has now been sent to Georgia Tech for payment.
  3. OWASP Development Guide Plan
  4. OWASP Testing Guide Plan
  5. OWASP Code Review Guide Plan
  1. Amount: $25,000 USD
  2. Status: The ESAPI proposal is still being reviewed.
  1. Amount: $30,000 USD
  2. Status: The ModSecurity proposal is still being reviewed.
  • Google Grants Proposal
  1. Amount: $120,000 USD in Adwords Funds
  2. Status: Awarded.
  3. Note: There is no link to show the proposal for this grant. There was a form that was submitted to Google, and we did not receive a record of this form.
  • European Commission Grant Proposal
  1. Amount: €250,000
  2. Status: Denied.
  • Google Summer of Code
  1. Amount: $5,500
  2. Status: Awarded
  • Projects breakdown:
    • 4 ZAP Projects: $2,000
    • 4 OWTF Projects: $2,000
    • 1 PHP Security Project: $500
    • 1 Hackademics Project: $500
    • 1 Modsecurity Project: $500
    • Note: Big thank you to Fabio Cerullo for coordinating and managing this award.


  • Total Funds Awarded: $157,170 USD for 2013.
Retrieved from "https://wiki.owasp.org/index.php?title=Projects/Reports/2013-20-09&oldid=158776"