This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org
Difference between revisions of "OWASP Project Reviews 2017"
(Created blank page) (Tag: Visual edit) |
(Tag: Visual edit) |
||
(20 intermediate revisions by 2 users not shown) | |||
Line 1: | Line 1: | ||
+ | === '''<u>[[Project Reviews Guideline|Overview of Project Reviews:]]</u>''' === | ||
+ | OWASP is reviewing projects who wish to graduate from Incubator to Lab to Flagship. The purpose of this assessment is to determine whether a project meets the minimum criteria to graduate as outlined in the Project Health Assessment Criteria Document. The review process begins with an initial self-assessment done by the project leader and reviewed by Matt Tesauro. Next, the assessment enters the peer review phase where we ask volunteers in our OWASP Community to participate and finalize the results. I have included a [https://docs.google.com/document/d/1NQSHshTxK1AWTkD4WgYluxSafgO-XGDHZnwE9Qvt7TE/edit '''Sample of a Project Assessmen'''t] for your review and consideration. | ||
+ | '''OWASP Project Reviews @ APPSEC USA 2017''' | ||
+ | * Matt Tesauro (Sr. Project Coordinator) | ||
+ | * Claudia Aviles Casanovas (Project Coordinator) | ||
+ | '''Description of Scope of Work:''' | ||
+ | |||
+ | List of Project Reviews: | ||
+ | |||
+ | OWASP Security Knowledge Framework Project | ||
+ | |||
+ | OWASP Security Mobile Testing Guide Project | ||
+ | |||
+ | OWASP Lab/Incubator Projects Deep Dive Health Checks | ||
+ | |||
+ | === '''<u>OWASP Project Health Checks:</u>''' === | ||
+ | '''Review Forms:''' [https://docs.google.com/a/owasp.org/document/d/1jUXt9M9u9Kq1JLaDSdbh6s0p5G_EqFSoaKpzDRures4/edit?usp=sharing Code Health Check] [https://docs.google.com/a/owasp.org/document/d/1aDdcBm3v-DMraVKmsBiNA4YzBmlGFLvOddj5nvPd--Q/edit?usp=sharing Tool Health Check] [https://docs.google.com/a/owasp.org/document/d/17kJlpupi2nmKKRMMBpxgyj1JWxvt23iT8fWULm4SW6k/edit?usp=sharing Documentation Health Check] | ||
+ | |||
+ | '''Lab Projects:''' | ||
+ | |||
+ | [[OWASP Hackademic Challenges Project|OWASP Hackademic Challenges Project]] | ||
+ | |||
+ | [[OWASP Mantra - Security Framework|OWASP Mantra Security Framwork]] | ||
+ | |||
+ | [[:Category:OWASP Security Ninjas AppSec Training Program|OWASP Security Ninjas AppSec Training Program]] | ||
+ | |||
+ | OWASP Security Knowledge Framework Project | ||
+ | |||
+ | '''Lab Documentation Projects:''' | ||
+ | |||
+ | [[OWASP Application Security Guide For CISOs Project|OWASP Application Security Guide for Cisos Project]] | ||
+ | |||
+ | [[OWASP CISO Survey|OWASP Cisco Survey]] | ||
+ | |||
+ | '''Incubator Projects''' | ||
+ | |||
+ | Graduation Project: OWASP Mobile Security Testing Guide Project | ||
+ | |||
+ | https://www.owasp.org/index.php/OWASP_Secure_Headers_Project - Response on needed on request to get an external host<nowiki/>https://www.owasp.org/index.php/OWASP_WASC_Distributed_Web_Honeypots_Project - No updates since 2015 | ||
+ | |||
+ | https://www.owasp.org/index.php/OWASP_Faux_Bank_Project - No updates since 2015 | ||
+ | |||
+ | https://www.owasp.org/index.php/OWASP_Droid10_Project - No updates since March 15 | ||
+ | |||
+ | https://www.owasp.org/index.php/OWASP_WAP-Web_Application_Protection - no updates since 2015 and no repository still in salesforge | ||
+ | |||
+ | https://www.owasp.org/index.php/OWASP_Mutillidae_2_Project - No updates since 2015 still using salesforge | ||
+ | |||
+ | https://www.owasp.org/index.php/OWASP_WebSpa_Project - no updates since March 2015 last update in salesforge 2/21/2016 | ||
+ | |||
+ | https://www.owasp.org/index.php/OWASP_Rainbow_Maker_Project - Last release 12/11/2015 and no updates since May 2015 | ||
+ | |||
+ | https://www.owasp.org/index.php/Category:OWASP_.NET_Project - No updates March 23, 2016 | ||
+ | |||
+ | https://www.owasp.org/index.php/OWASP_WASC_Web_Hacking_Incidents_Database_Project - no updated since March 12, 2015 | ||
+ | |||
+ | https://www.owasp.org/index.php/OWASP_Application_Security_Program_Quick_Start_Guide_Project - no updates since january 2015 | ||
+ | |||
+ | https://www.owasp.org/index.php/OWASP_Secure_Configuration_Guide#tab=Main - No updates since April 2016 - no updates to guide | ||
+ | |||
+ | https://www.owasp.org/index.php/OWASP_RFP-Criteria - no updates since March 2016 | ||
+ | |||
+ | https://www.owasp.org/index.php/Category:OWASP_Top_10_fuer_Entwickler - no real updates on news since 2013 some updates to the wiki | ||
+ | |||
+ | === '''[https://2017.appsec.eu/program/project-reviews OWASP Project Reviews @ APPSEC Belfast 2017]''' === | ||
+ | * Matt Tesauro (Sr. Project Coordinator) | ||
+ | * Johanna Curiel (Program Leader) | ||
+ | * Claudia Aviles Casanovas (Project Coordinator) | ||
+ | * Talal Albacha | ||
+ | * Enrico Branca | ||
+ | * Nabin Kc | ||
+ | '''Description of Scope of Work: Additional [[Project Reviews Guideline|Information here]].''' | ||
+ | |||
+ | '''Tool Projects''' | ||
+ | * [https://docs.google.com/document/d/1zO_9apf6470q9fR76F6Ms9NgGg_1HN2-DwZcRuHI7mg/edit?usp=sharing OWASP Benchmark Project] | ||
+ | * [https://docs.google.com/a/owasp.org/document/d/1X_n_70BA4cvSAoj78i30VtryiaTRvXsJaQzYLncV7nc/edit?usp=sharing OWASP Juiceshop Project] | ||
+ | '''Code Projects:''' | ||
+ | * [https://docs.google.com/a/owasp.org/document/d/1w2A8OJmir2ZSYdYgcrYs578ldo74s7i3EdipkLxgXes/edit?usp=sharing OWASP DefectDojo Project] | ||
+ | * [https://docs.google.com/a/owasp.org/document/d/198-SYlHl2g0FFE3GcJeOUIS1Sw26gxXKbk3tK1x23js/edit?usp=sharing OWASP Node.js Goat Project] | ||
+ | '''Documentation Projects:''' | ||
+ | * [https://docs.google.com/a/owasp.org/document/d/1HPpSF7vaZEFhO2mRxqJT2KTmtxp7yxkFmm5jbzliuy4/edit?usp=sharing OWASP Automated Threats to Web Applications] | ||
+ | * [https://docs.google.com/a/owasp.org/document/d/15gEcVHJDcbJQysCTHww3vD_LH2BQoKvE3wBp3LI5cAY/edit?usp=sharing OWASP Snakes and Ladder] | ||
+ | * [https://docs.google.com/a/owasp.org/document/d/1j3RWsL5SYxw6vx9PCsWikrvKmbj97XicMlJW6xhdhjY/edit?usp=sharing OWASP Embedded Application Security] |
Latest revision as of 13:23, 11 September 2017
Overview of Project Reviews:
OWASP is reviewing projects who wish to graduate from Incubator to Lab to Flagship. The purpose of this assessment is to determine whether a project meets the minimum criteria to graduate as outlined in the Project Health Assessment Criteria Document. The review process begins with an initial self-assessment done by the project leader and reviewed by Matt Tesauro. Next, the assessment enters the peer review phase where we ask volunteers in our OWASP Community to participate and finalize the results. I have included a Sample of a Project Assessment for your review and consideration.
OWASP Project Reviews @ APPSEC USA 2017
- Matt Tesauro (Sr. Project Coordinator)
- Claudia Aviles Casanovas (Project Coordinator)
Description of Scope of Work:
List of Project Reviews:
OWASP Security Knowledge Framework Project
OWASP Security Mobile Testing Guide Project
OWASP Lab/Incubator Projects Deep Dive Health Checks
OWASP Project Health Checks:
Review Forms: Code Health Check Tool Health Check Documentation Health Check
Lab Projects:
OWASP Hackademic Challenges Project
OWASP Mantra Security Framwork
OWASP Security Ninjas AppSec Training Program
OWASP Security Knowledge Framework Project
Lab Documentation Projects:
OWASP Application Security Guide for Cisos Project
Incubator Projects
Graduation Project: OWASP Mobile Security Testing Guide Project
https://www.owasp.org/index.php/OWASP_Secure_Headers_Project - Response on needed on request to get an external hosthttps://www.owasp.org/index.php/OWASP_WASC_Distributed_Web_Honeypots_Project - No updates since 2015
https://www.owasp.org/index.php/OWASP_Faux_Bank_Project - No updates since 2015
https://www.owasp.org/index.php/OWASP_Droid10_Project - No updates since March 15
https://www.owasp.org/index.php/OWASP_WAP-Web_Application_Protection - no updates since 2015 and no repository still in salesforge
https://www.owasp.org/index.php/OWASP_Mutillidae_2_Project - No updates since 2015 still using salesforge
https://www.owasp.org/index.php/OWASP_WebSpa_Project - no updates since March 2015 last update in salesforge 2/21/2016
https://www.owasp.org/index.php/OWASP_Rainbow_Maker_Project - Last release 12/11/2015 and no updates since May 2015
https://www.owasp.org/index.php/Category:OWASP_.NET_Project - No updates March 23, 2016
https://www.owasp.org/index.php/OWASP_WASC_Web_Hacking_Incidents_Database_Project - no updated since March 12, 2015
https://www.owasp.org/index.php/OWASP_Application_Security_Program_Quick_Start_Guide_Project - no updates since january 2015
https://www.owasp.org/index.php/OWASP_Secure_Configuration_Guide#tab=Main - No updates since April 2016 - no updates to guide
https://www.owasp.org/index.php/OWASP_RFP-Criteria - no updates since March 2016
https://www.owasp.org/index.php/Category:OWASP_Top_10_fuer_Entwickler - no real updates on news since 2013 some updates to the wiki
OWASP Project Reviews @ APPSEC Belfast 2017
- Matt Tesauro (Sr. Project Coordinator)
- Johanna Curiel (Program Leader)
- Claudia Aviles Casanovas (Project Coordinator)
- Talal Albacha
- Enrico Branca
- Nabin Kc
Description of Scope of Work: Additional Information here.
Tool Projects
Code Projects:
Documentation Projects: