This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org

Difference between revisions of "Category:OWASP Project Frame Experience 1"

From OWASP
Jump to: navigation, search
(New page: {{ProjectTabs | Proj_About= | Proj_Documentation= ====Web Application Edition==== ====Web Service Edition==== ====Cloud Computing Edition==== ====Client Server Edition==== | ...)
 
 
(52 intermediate revisions by the same user not shown)
Line 1: Line 1:
 
+
{{ProjectTabs1
{{ProjectTabs |
 
Proj_About=
 
  
 +
|Proj_About=
 +
'''OWASP LIVE CD PROJECT'''
 +
[[Image:OWASP Live CD.JPG|212px|right]]
 +
----
 +
'''Project Type''' - [[:Category:OWASP_Project#Release_Quality_Projects|OWASP Tool]].
 +
----
 +
'''Overview''' - This project collects some of the best open source security projects in a single environment. Web developers, testers and security professionals can boot from this Live CD and have access to a full security testing suite. This allows its users to test for various security issues in web applications and web sites. The OWASP Live CD also contains documentation and an interactive learning environment (Web Goat) to enhance users web application security knowledge. This presentation will cover the current state of the OWASP Live CD as well as the plans for future developments. The OWASP Live CD is free for commercial or non­commercial use.
 +
----
 +
'''Project Leader''' - [[User:Mtesauro|Matt Tesauro]].
 +
----
 +
'''Project Contributors''' - (if applicable)
 +
----
 +
'''Project Reviewers''' - [[User:Wirefall|Dustin Dykes]], [[User:Kpoots|Kent Poots]] & [[User:Sdeleersnyder|Sesbastien Deleersnyder]].
 +
----
 +
'''Mailing List''' - [https://lists.owasp.org/mailman/listinfo/owasp-live-cd-2008-project Subscribe here].
 +
----
 +
'''Related Projects''' - [[:Category:OWASP_Live_CD_2007_Project|OWASP Live CD 2007 Project - A]] and [[SpoC 007 - OWASP LiveCD Project|OWASP Live CD 2007 Project - B]].
 +
----
 +
'''Sponsors''' - [[:OWASP_Summer_of_Code_2008|OWASP Summer of Code 2008]].
 +
----
  
|  
+
|Proj_Download=
 +
=== ISO Images ===
 +
'''Latest Release'''<br />
 +
The AustinTerrier release ISO is currently available [http://mtesauro.com/files/owasp-livecd-AustinTerrier-Feb2009.iso owasp-livecd-AustinTerrier-Feb2009.iso].<br />
  
Proj_Documentation=
+
'''Don't forget to check the MD5 sum!'''<br />
 +
MD5: 4831a2d2f113216e8f4c8df90a1d316f  owasp-livecd-AustinTerrier-Feb2009.iso or use the file [http://mtesauro.com/livecd-md5sum.txt md5sum.txt]
  
 +
[http://mtesauro.com/livecd/index.php?title=Screenshots Screenshots] of the SoC release!
  
====Web Application Edition====
+
<s>The Portugal release ISO is currently available [http://mtesauro.com/files/owasp-livecd-2008-Portugal.iso owasp-livecd-2008-Portugal.iso].</s>
====Web Service Edition====
+
<!--<s>The SoC release ISO is currently available [http://mtesauro.com/owasp-livecd-2008-SoC.iso owasp-livecd-2008-SoC.iso].</s>-->
====Cloud Computing Edition====
+
<!--<s>The Beta 2 release ISO is currently available [http://mtesauro.com/owasp-livecd-2008-beta2.iso owasp-livecd-2008-beta2.iso].</s>-->
====Client Server Edition====
+
<!--<s>The Beta 1 release ISO is currently available [http://mtesauro.com/owasp-livecd-2008-beta1.iso owasp-livecd-2008-beta1.iso].</s>-->
|
 
  
Proj_Mail= '''Project News'''
+
===VMware and Virtual Box Installs===
  
 +
'''Austin Terrier VMware Install''': [http://mtesauro.com/files/owasp-livecd-AustinTerrier-Feb2009.vmdk.rar owasp-livecd-AustinTerrier-Feb2009.vmdk.rar]<br />
 +
f2860c95bcfdb9a313d09a4401948157  owasp-livecd-AustinTerrier-Feb2009.vmdk.rar or use the file [http://mtesauro.com/livecd-md5sum.txt md5sum.txt]
  
Proj_Related= [[Top Ten|OWASP Top Ten]] |
+
'''Austin Terrier Virtual Box Install''': [http://mtesauro.com/files/owasp-livecd-AustinTerrier-Feb2009.vdi.rar owasp-livecd-AustinTerrier-Feb2009.vdi.rar]<br />
 +
bbfe0977019a7b727b5d97ffa7f70d21  owasp-livecd-AustinTerrier-Feb2009.vdi.rar or use the file [http://mtesauro.com/livecd-md5sum.txt md5sum.txt]
  
Proj_Contributors=
+
Don't forget to check those MD5 sums!!  Nobody likes a bad download.
  
 +
NOTE:  For both VMware and Virtual Box, we are providing the ''hard drive'' file.  This will allow you to configure the virtual machine appropriately for your hardware and software (Virtual Box, VMware Player/Server/ESX...).  Parallels users should download the VMware install as Parallels will import VMware disks.  We are in the process of documenting the setup procedures for each of these if you are not familiar with creating/configuring a new virtual machine.
  
 +
[http://mtesauro.com/livecd/index.php?title=How_to_increase_the_VMware_drive_size How to increase the VMware drive size] non-destructively.
  
'''Users and Adopters'''
+
[http://mtesauro.com/livecd/index.php?title=Main_Page#Downloads Download Site].
  
Pilots are already underway at various companies and agencies around the globe. A broad range of companies and agencies around the globe are also using OWASP ASVS, including:
+
|Proj_Documentation=
 +
The following general documentation exists:
 +
*[http://mtesauro.com/livecd/index.php?title=How_I_created_the_live_CD How I created the live CD]
 +
*[http://mtesauro.com/livecd/index.php?title=Category:Making_Modules Making Modules]
 +
*[http://mtesauro.com/livecd/index.php?title=Add_modules_to_a_running_system Add modules to a running system]
 +
*[http://mtesauro.com/livecd/index.php?title=Starting_the_SSH_daemon_on_the_Live_CD Starting the SSH daemon on the Live CD]
 +
*[http://mtesauro.com/livecd/index.php?title=Checking_sources Checking sources] to avoid malicious modifications, bad downloads, etc
 +
*[http://mtesauro.com/livecd/index.php?title=How_to_increase_the_VMware_drive_size How to increase the VMware drive size] non-destructively.
  
 +
Note there also documentation for each module's creation on the [http://mtesauro.com/livecd/index.php?title=Current_Tool_List Current Tool List] and the [http://mtesauro.com/livecd/index.php?title=Supporting_Software_List Supporting Software List]. 
 +
Come to think of it, there are 300+ tools listed under [http://mtesauro.com/livecd/index.php?title=Potential_Tool_List Potential Tool List] and the pages linked from there as well.
  
* Aspect Security
+
I also have a few ToDo lists:
* Booz Allen Hamilton
+
*[http://mtesauro.com/livecd/index.php?title=Wiki_ToDo Wiki ToDo]
 +
*[http://mtesauro.com/livecd/index.php?title=General_ToDo General ToDo]
  
  
Please let us know how your organization is using OWASP ASVS. Include your name, organization's name, and brief description of how you use the standard. The project lead can be reached at [mailto:[email protected] [email protected]] Thanks for supporting OWASP!}}
+
'''Presentations on the OWASP Live CD'''
''This project licensed under the Licensed under [http://creativecommons.org/licenses/by-sa/3.0/ Creative Commons Attribution ShareAlike 3.0].''  
 
<br>
 
  
= Articles Below - More About ASVS and Using It =
+
I gave a presentation on the OWASP Live CD at the local [http://www.owasp.org/index.php/Austin OWASP chapter] on 2008-08-26.  I've put the slides on the server in the following formats:
 +
* [http://mtesauro.com/files/owasp-austin_live-cd_2008-08-26.odp OpenOffice] (native format)
 +
* [http://mtesauro.com/files/owasp-austin_live-cd_2008-08-26.pdf PDF]
 +
* [http://mtesauro.com/files/owasp-austin_live-cd_2008-08-26.ppt PowerPoint]
 +
 
 +
(Note: A bug in export to PPT causes some funky symbols to be inserted when a line ends with a close parenthesis.  I didn't clean up the PPT file)
 +
 
 +
Here's another presentation I gave on Open Source Tools at the local ISSA chapter.  I have a few slides on the OWASP Live CD as well.
 +
* [http://mtesauro.com/files/Open-Source-Tools_Feb-19-2009.pdf PDF format]
 +
also, I created a page covering all the tools I mentioned in the slides with links, descriptions, etc. [http://mtesauro.com/livecd/index.php?title=Open_Source_Tools_Supplement Open Source Tools Supplement]
 +
 
 +
[http://mtesauro.com/livecd/index.php?title=Main_Page#Documentation Documentation Site].
 +
 
 +
|Proj_Status=
 +
'''Quality Status''' - [[:Category:OWASP_Project_Assessment#Release_Quality_Tool_Criteria|'''Release Quality Tool''']]. [[:OWASP Live CD 2008 Project - Assessment Frame|Click here for complete information.]]
 +
 
 +
|Proj_News=
 +
'''Latest Release''': The AustinTerrier release ISO is currently available http://mtesauro.com/files/owasp-livecd-AustinTerrier-Feb2009.iso.
 +
 
 +
}}
 +
 
 +
''This project licensed under the Licensed under [http://www.gnu.org/copyleft/fdl.html GNU Free Documentation License 1.2].''

Latest revision as of 01:37, 31 March 2009

Home

OWASP LIVE CD PROJECT

OWASP Live CD.JPG

Project Type - OWASP Tool.


Overview - This project collects some of the best open source security projects in a single environment. Web developers, testers and security professionals can boot from this Live CD and have access to a full security testing suite. This allows its users to test for various security issues in web applications and web sites. The OWASP Live CD also contains documentation and an interactive learning environment (Web Goat) to enhance users web application security knowledge. This presentation will cover the current state of the OWASP Live CD as well as the plans for future developments. The OWASP Live CD is free for commercial or non­commercial use.


Project Leader - Matt Tesauro.


Project Contributors - (if applicable)


Project Reviewers - Dustin Dykes, Kent Poots & Sesbastien Deleersnyder.


Mailing List - Subscribe here.


Related Projects - OWASP Live CD 2007 Project - A and OWASP Live CD 2007 Project - B.


Sponsors - OWASP Summer of Code 2008.


Download

ISO Images

Latest Release
The AustinTerrier release ISO is currently available owasp-livecd-AustinTerrier-Feb2009.iso.

Don't forget to check the MD5 sum!
MD5: 4831a2d2f113216e8f4c8df90a1d316f owasp-livecd-AustinTerrier-Feb2009.iso or use the file md5sum.txt

Screenshots of the SoC release!

The Portugal release ISO is currently available owasp-livecd-2008-Portugal.iso.

VMware and Virtual Box Installs

Austin Terrier VMware Install: owasp-livecd-AustinTerrier-Feb2009.vmdk.rar
f2860c95bcfdb9a313d09a4401948157 owasp-livecd-AustinTerrier-Feb2009.vmdk.rar or use the file md5sum.txt

Austin Terrier Virtual Box Install: owasp-livecd-AustinTerrier-Feb2009.vdi.rar
bbfe0977019a7b727b5d97ffa7f70d21 owasp-livecd-AustinTerrier-Feb2009.vdi.rar or use the file md5sum.txt

Don't forget to check those MD5 sums!! Nobody likes a bad download.

NOTE: For both VMware and Virtual Box, we are providing the hard drive file. This will allow you to configure the virtual machine appropriately for your hardware and software (Virtual Box, VMware Player/Server/ESX...). Parallels users should download the VMware install as Parallels will import VMware disks. We are in the process of documenting the setup procedures for each of these if you are not familiar with creating/configuring a new virtual machine.

How to increase the VMware drive size non-destructively.

Download Site.

Documentation

The following general documentation exists:

Note there also documentation for each module's creation on the Current Tool List and the Supporting Software List. Come to think of it, there are 300+ tools listed under Potential Tool List and the pages linked from there as well.

I also have a few ToDo lists:


Presentations on the OWASP Live CD

I gave a presentation on the OWASP Live CD at the local OWASP chapter on 2008-08-26. I've put the slides on the server in the following formats:

(Note: A bug in export to PPT causes some funky symbols to be inserted when a line ends with a close parenthesis. I didn't clean up the PPT file)

Here's another presentation I gave on Open Source Tools at the local ISSA chapter. I have a few slides on the OWASP Live CD as well.

also, I created a page covering all the tools I mentioned in the slides with links, descriptions, etc. Open Source Tools Supplement

Documentation Site.

Release Status

Quality Status - Release Quality Tool. Click here for complete information.

News

Latest Release: The AustinTerrier release ISO is currently available http://mtesauro.com/files/owasp-livecd-AustinTerrier-Feb2009.iso.


This project licensed under the Licensed under GNU Free Documentation License 1.2.

This category currently contains no pages or media.