This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org
Difference between revisions of "Category:OWASP Orizon Project"
Line 32: | Line 32: | ||
==Licensing== | ==Licensing== | ||
− | OWASP XXX is free to use. It is licensed under the | + | OWASP XXX is free to use. It is licensed under the GNU General Public License version 3.0 (GPLv3). |
Revision as of 22:56, 19 February 2014
OWASP OrizonOWASP Orizon is... IntroductionThe quest for secure code is what all developers want to achieve (at least we hope so). Software must be reliable. Software must be strong. Software must be secure. How secure does my software have to be? The correct answer is hard to find. But security is a problem that even a development team must consider. Should skilled developers also be security gurus? Not necessarily, but it is important to provide security tools that will augment their development skills. And so our quest for secure code begins... The OWASP Orizon project was created with the aim of providing a common ground for safe coding and code review methodologies to be applied to software. The project is approaching its first major release and it will be able to be used in a production environment in the near future. Orizon must give thanks to Findbugs, the OWASP LAPSE Project, RATS, and Flawfinder for ideas and inspiration. The Orizon project, hosted by Sourceforge, is here.
DescriptionOwasp Orizon is a code review tool intended to be used from security specialist to perform white box assessment. Orizon exposes also a set of APIs that can be used within a security tool to provide code review services.
LicensingOWASP XXX is free to use. It is licensed under the GNU General Public License version 3.0 (GPLv3).
|
What is Orizon?OWASP Orizon provides:
PresentationLink to presentation
Project LeaderProject leader's name
Related Projects
|
Quick Download
News and Events
In PrintThis project can be purchased as a print on demand book from Lulu.com
Classifications |
Available online is an Orizon presentation given at OWASP AppSec EU 2008 in Ghent, May 2008.
Owasp Orizon Internals @ Owasp AppSec NY 2008, New York 22-25th September 2008
Owasp Orizon Internals @ Owasp AppSec EU 2008, Ghent 21-22nd May 2008
Owasp Orizon Internals @ Owasp Day Italy 2008, Rome 31st March 2008
OWASP Orizon Project @ SMAU eAcademy, Milan 4-7th October 2006
I will talk to SMAU eAcademy2006 next Saturday 7th October 2006 about code review and safe coding. Here you can find more information (for now, only in Italian). The last part of the speech will be about introducing the Orizon project and giving a development roadmap.
A slideshare space is available to for the presentations used in Owasp | conferences
Volunteers
Orizon is developed by a worldwide team of volunteers. The primary contributors to date have been:
- Paolo Perego - former project leader
- Steven Evans
- Andres Riancho
- Dinis Cruz
- Mike Duncan
- prashant k v
- Alessio Marziali
- Jason Li
- Nishi Kumar
Others
As of Orizon, the priorities are:
- xxx
- xxx
- xxx
Orizon wants you!
The model we follow is the OpenBSD one. Anyone will be free about sending opinions, criticism and patches. If an user will provide a good number of patches showing us he (or she) really wants to collaborate to the project, than he (or she) will be added to Owasp orizon core team.
If you are a skilled Java developer why don't you consider writing a bunch of code for Orizon? Or, consider joining the project for documentation, advertising, blog maintenance, etc.
We hope you find the OWASP Orizon Project useful. Please contribute to the project by volunteering for one of the tasks, or by sending your comments, questions, and suggestions.
PROJECT IDENTIFICATION | |||||||
---|---|---|---|---|---|---|---|
Project Name | OWASP Orizon Project | ||||||
Short Project Description | This project born in 2006 in order to provide a framework to all Owasp projects developing code review services. The project is in a quite stable stage and it is usable for Java static code review and some dynamic tests against XSS. Owasp Orizon includes also APIs for code crawling, usable for code crawling tools. | ||||||
Key Project Information | Project Leader Paolo Perego |
Project Contributors See here |
Mailing list Subscribe here Use here |
Project Type |
Sponsor OWASP SoC 08 |
Release Status | Main Links | Related Projects |
---|---|---|
The Owasp OrizonProject in Power Point |
Pages in category "OWASP Orizon Project"
This category contains only the following page.