This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org

OWASP Incident Response Project

From OWASP
Revision as of 21:33, 27 July 2015 by Brennan (talk | contribs) (What is the OWASP Incident Response Project?)

Jump to: navigation, search
OWASP Project Header.jpg

OWASP Incident Response Project

The OWASP Incident Response Project is a proactive set of recommendations for firms to use as a best practice for dealing with a hacked web application.

Introduction

You just learned that your company website has been HACKED now what do you do? This will be a Top 10 things (based on OS) that you should considering doing

Description

This project is a guide of suggested best practices for stand-alone IR of a web application on dedicated hardware that you have 100% access to as well as when the application is part of a cloud service offering. The goal is to provide a best practices checklist that can be used to ensure chain of custody and to assist with investigations of root-cause.

Licensing

The OWASP Incident Response Project is free to use. It is licensed under the http://creativecommons.org/licenses/by-sa/3.0/ Creative Commons Attribution-ShareAlike 3.0 license], so you can copy, distribute and transmit the work, and you can adapt it, and use it commercially, but all provided that you attribute the work and if you alter, transform, or build upon this work, you may distribute the resulting work only under the same or similar license to this one.


What is the OWASP Incident Response Project?

The OWASP Incident Response Project provides:

  • The next level of information based on the work of PROACTIVE recommendations
  • Helpful checklist of what you can do AFTER a breach
  • Basic Incident Response Training
  • Best practices to lock down the OS and application to be proactive

Presentation

Check Back Soon

Project Leader

Tom Brennan

Related Projects

OWASP Top 10

OWASP Cheat Sheets

OWASP Mod_Security CRS

Web Hacking Incident Database


Quick Download

  • Check Back Soon

News and Events

In Print

This project WILL be available as a publication when released.

Classifications

Owasp-incubator-trans-85.png Owasp-builders-small.png
Owasp-defenders-small.png
Cc-button-y-sa-small.png
Project Type Files DOC.jpg