OWASP Global Projects Report

• Project Numbers
  • Active Projects: 168
  • Inactive Projects: 67

• New OWASP Projects
  • OWASP WebSandBox Project
  • OWASP HA Vulnerability Scanner Project
  • OWASP Dependency Track Project
  • OWASP Security Principles Project

• Project Applications
  • SecLists Project

• Projects Under Review
  • OWASP Cheat Sheets Project
  • OWASP Java HTML Sanitizer Project
  • Xenotix XSS Exploit Framework
  • OWASP Cornucopia Project
  • OWASP Java Encoder Project
  • Project reviews are on hold until we can fill the Technical Project Advisor volunteer roles.

Currently Working On

• Determining Active Project Status
  • This is a status update on this initiative.
  • I have completed the first round of requests for all Flagship, Labs, and Incubator projects.
  • I am now going through the list, and e-mailing the non-responsive Leaders once again.
  • Today, I have gone ahead and re-sent my request for a 3rd time to un-responsive Leaders.
  • If I do not get a reply by Friday, 26th of July, then I will mark the project as inactive.
  • The same process will be used for the unresponsive Leaders of Incubator projects.

• Project Summit: AppSec USA 2013
  • I continue to plan the logistics for the project summit taking place at AppSec USA, this year.
  • I continue to gather estimates, flight, and roadmap details from Leaders.
  • We are now closer to finalizing the travel arrangements and timetables for each project leader.

• Women in AppSec: AppSec USA 2013
  • The team is still in the fundraising stage; however, we are now accepting applications.
  • We have raised $500.00 via the OWASP Boston Chapter.
  • We have also raised $500.00 thanks to the OWASP Long Island Chapter.
  • Lastly, iSEC Partners have donated $3,000.00 to the Program.
  • We are only $2,000.00 from our goal this year.
  • Women in AppSec Application Form.
  • The application deadline is Monday, September 09, 2013 at 5pm GMT.
  • If you know of anyone who might be interested in sponsoring $2,000.00 to the Program, please reach out to me and let me know.

• Daily Project based queries and requests
  • This has not changed much since I began the post: questions are very similar in nature.
  • Global AppSec questions.
  • Funding queries.
  • Travel availability.
  • Project based administrative help.
  • Project status information.
  • Several project donations questions.
  • Marketing questions.
  • Grant funding questions.
  • OWASP Social Media Updates.
  • What's happening with projects, questions.

Grants Updates

• OWASP OpenSAMM Grant Proposal

1. Amount: TBD
2. Status: This proposal is still in the planning and writing phase.

• OWASP Guidebooks Proposal

1. Amount: $25,000 USD
2. Status: Awarded. The first payment has been allocated to our project budgets.
3. OWASP Development Guide Plan
4. OWASP Testing Guide Plan
5. OWASP Code Review Guide Plan

• OWASP ESAPI Grant Proposal

1. Amount: $25,000 USD
2. Status: The ESAPI proposal is still being reviewed.

• OWASP ModSecurity CRS Proposal

1. Amount: $30,000 USD
2. Status: The ModSecurity proposal is still being reviewed.

• Google Grants Proposal

1. Amount: $120,000 USD in Adwords Funds
2. Status: Awarded.
3. Note: There is no link to show the proposal for this grant. There was a form that was submitted to Google, and we did not receive a record of this form.

• European Commission Grant Proposal

1. Amount: €250,000
2. Status: This proposal has been completed and submitted.

• Google Summer of Code

1. Amount: $5,500.00
2. Status: Awarded

• Projects breakdown:
  • 4 ZAP Projects: $2,000.00
  • 4 OWTF Projects: $2,000.00
  • 1 PHP Security Project: $500
  • 1 Hackademics Project: $500
  • 1 Modsecurity Project: $500
  • Note: Big thank you to Fabio Cerullo for coordinating and managing this award.

• Total Grant Funds Awarded: $150,500 USD for 2013.