|
|
Line 1: |
Line 1: |
| == (WORK IN PROGRESS) == | | == (WORK IN PROGRESS) == |
| | | |
− | {| style="width:95%" border="0" align="center" | + | {{Project Information:template}} |
− | ! colspan="3" align="center" style="background:#4058A0; color:white" | Project Main Picture
| |
− | |-
| |
− | | style="width:10%; background:#7B8ABD" align="center"| '''Short project description''' || colspan="2" style="width:90%; background:#C2C2C2" align="left" | Skavenger is a web application security assessment toolkit which arised from many years of professional experience in the web application assessment field and is the result of nearly one your of work.
| |
− | | |
− | It passively analyzes traffic logged by various MITM proxies (such as WebScarab and Burp) as well as other sources (like Firefox's LiveHTTPHeader plugin) and helps to identify various kinds of possible vulnerabilities (such as XSS, CRLF injection, an insecure session management and several kinds of information disclosure). Skavenger's modular design allows the integration of custom scanning modules without any knowledge about the tool at all.
| |
− | | |
− | Skavenger is completely written in Perl and can be downloaded from [https://sourceforge.net/projects/skavenger/ Skavenger.]
| |
− | |-
| |
− | | style="width:10x%; background:#7B8ABD" align="center"| '''Email contacts''' || style="width:40%; background:#cccccc" align="center" | Project leader: [mailto:mro(at)securenet.de '''Matthias Rohr''']
| |
− | | style="width:40%; background:#cccccc" align="center" | [mailto:to(at)change '''Project mailing list''']
| |
− | |-
| |
− | | style="width:10x%; background:#7B8ABD" align="center"| '''Sponsors''' || colspan="2" style="width:90%; background:#cccccc" align="center" | [[OWASP Summer of Code 2008|'''OWASP Summer of Code 2008''']]
| |
− | |}
| |
− | | |
− | | |
− | {| style="width:95%" border="0" align="center"
| |
− | ! colspan="4" align="center" style="background:#4058A0; color:white" | Assessment and Review Process
| |
− | |-
| |
− | | style="width:10%; background:#ffffff align="center"| || style="width:30%; background:#C2C2C2" align="center" | '''First Reviewer''' || style="width:30%; background:#C2C2C2" align="center"| '''Second Reviewer''' || style="width:25%; background:#C2C2C2" align="center"| '''OWASP Board Member'''
| |
− | |-
| |
− | | style="width:10%; background:#7B8ABD" align="center"| '''Email contacts''' || style="width:30%; background:#C2C2C2" align="center" | [mailto:name(at)name '''Name'''] || style="width:30%; background:#C2C2C2" align="center"| [mailto:name(at)name '''Name'''] || style="width:25%; background:#C2C2C2" align="center"| Non applicable
| |
− | |-
| |
− | | style="width:10%; background:#7B8ABD" align="center"| '''50% Review''' || style="width:30%; background:#C2C2C2" align="center" | '''XXXX''' || style="width:30%; background:#C2C2C2" align="center"| '''YYYY''' || style="width:25%; background:#C2C2C2" align="center"| Non applicable
| |
− | |-
| |
− | | style="width:10%; background:#7B8ABD" align="center"| '''Final Review''' || style="width:30%; background:#C2C2C2" align="center" | '''ZZZZZ''' || style="width:30%; background:#C2C2C2" align="center"| '''WWWW''' || style="width:25%; background:#C2C2C2" align="center"| Non applicable
| |
− | |-
| |
− | |}
| |
| | | |
| | | |