|
|
(41 intermediate revisions by 4 users not shown) |
Line 1: |
Line 1: |
− | <br>'''<center>This is a DRAFT page!!</center>'''<br><br>
| + | *[[OWASP Related Commercial Services|New Project Page]], |
− | | + | *[[Commercial Services - First Attempt|Commercial Services - First Attempt - Not currently in use]]. |
− | ==== Home ====
| |
− | | |
− | {| width="100%"
| |
− | |-
| |
− | ! width="66%" | <br>
| |
− | ! width="33%" | <br>
| |
− | |- valign="top"
| |
− | |
| |
− | OWASP's mission is to make application security "visible," so that people and organizations can make informed decisions about application security risks. As a value-add to the website we have attempted to centralize OWASP project deliverable-based services for you in a single '''OWASP Commercial Services Registry'''. Examples of OWASP project deliverable-based services include: ASVS-based verification, ESAPI-based integration, SAMM-based process improvement, OWASP Guide-based training). Firms listed on the project tabs that are accessible from this page promote the development and consumption by industry and government of tools and techniques that are based on OWASP open standards, best practices and design patterns. To be listed in the OWASP Commercial Services Registry, you can find instructions [ http://owasp-project-management.googlecode.com/svn/trunk/documentation/owasp-commercial-services-registry.doc here]. You can also contact the project lead [ mailto:[email protected] here]. | |
− | <br>'''<center>OWASP does not endorse commercial products or services.</center>'''
| |
− | |
| |
− | [[Image:Asvs-ad-where-at.png]]
| |
− | | |
− | |}
| |
− | | |
− | <br>
| |
− | | |
− | ==== Verification ====
| |
− | | |
− | <br>Commercial OWASP ASVS verification providers are listed below. Organizations listed are not accredited by OWASP. Neither their products nor services have been endorsed by OWASP. Organizations listed either use ASVS or will help you use it. <br><br>
| |
− | | |
− | {| width="100%" cellspacing="1" cellpadding="1" border="0" style=""
| |
− | |-
| |
− | ! width="5%" | <br>
| |
− | ! width="90%" | <br>
| |
− | |-
| |
− | ! bgcolor="#cccccc" scope="col" | OWASP Member<br>
| |
− | ! bgcolor="#cccccc" scope="col" | Organization<br>
| |
− | |-
| |
− | | [[Image:Preferences.png|center]]<br>
| |
− | | ... another OWASP member organization...
| |
− | |-
| |
− | | bgcolor="#99cccc" | [[Image:Preferences.png|center]]<br>
| |
− | | bgcolor="#99cccc" |
| |
− | '''Booz Allen Hamilton'''
| |
− | | |
− | ''Last modified: April 14, 2010 - 8:36''
| |
− | | |
− | [http://www.boozallen.com/ Booz Allen Hamilton] has extensive experience in applying security best practices throughout the development lifecycle. We provide our clients with a deep and diverse software assurance program that will enhance your approach to software security beyond the traditional compensatory security controls. In addition to being a key participant in Open Web Application Security Project (OWASP), Booz Allen has supported the [https://buildsecurityin.us-cert.gov/daisy/bsi/home.html DHS Software Assurance (SwA) initiative] since its inception and is a [http://www.boozallen.com/consulting-services/assurance-resilience/security-development-lifecycle member of the Microsoft SDL Pro Network].
| |
− | | |
− | Our expert ASVS services include:<br>
| |
− | | |
− | *[http://code.google.com/p/owasp-asvs/wiki/Levels_1A Level 1A - Dynamic Scan (Partial Automated Verification)] | |
− | *[http://code.google.com/p/owasp-asvs/wiki/Levels_1B Level 1B - Source Code Scan (Partial Automated Verification)]
| |
− | *[http://code.google.com/p/owasp-asvs/wiki/Levels_2B Level 2B - Code Review (Partial Manual Verification)]
| |
− | | |
− | [mailto:[email protected] Contact us] for more information on ASVS verification services.<br> | |
− | | |
− | |-
| |
− | | align="center" |
| |
− | This organization is not an OWASP member
| |
− | | |
− | |
| |
− | ... not an OWASP member organization...<br>
| |
− | | |
− | |-
| |
− | | bgcolor="#99cccc" align="center" |
| |
− | This organization is not an OWASP member<br>
| |
− | | |
− | | bgcolor="#99cccc" |
| |
− | [http://www.google.com]... not an OWASP member organization...<br>
| |
− | | |
− | |}
| |
− | | |
− | <br> <br>
| |
− | | |
− | ==== Integration ====
| |
− | | |
− | <br>Commercial OWASP ESAPI integration providers are listed below. Organizations listed are not accredited by OWASP. Neither their products nor services have been endorsed by OWASP. <br><br>
| |
− | | |
− | {| width="100%" cellspacing="1" cellpadding="1" border="0" style=""
| |
− | |-
| |
− | ! bgcolor="#cccccc" scope="col" | OWASP Member<br>
| |
− | ! bgcolor="#cccccc" scope="col" | Organization Name<br>
| |
− | ! bgcolor="#cccccc" scope="col" | Organization POC<br>
| |
− | ! bgcolor="#cccccc" scope="col" | Programming Languages<br>
| |
− | |-
| |
− | | [[Image:Preferences.png|center]]<br> | |
− | |
| |
− | [http://www.aspectsecurity.com/ Aspect Security] 9175 Guilford Road, Suite 300 Columbia, MD 21046-2565<br>
| |
− | | |
− | |
| |
− | | |
− | | |
− | |
| |
− | ESAPI for Java ESAPI for .NET<br>
| |
− | | |
− | |-
| |
− | | bgcolor="#99cccc" | [[Image:Preferences.png|center]]<br>
| |
− | | bgcolor="#99cccc" |
| |
− | [http://www.boozallen.com Booz Allen Hamilton] 8283 Greensboro Drive McLean, VA 22102<br>
| |
− | | |
− | | bgcolor="#99cccc" |
| |
− | | |
− | | |
− | | bgcolor="#99cccc" |
| |
− | ESAPI for PHP<br>
| |
− | | |
− | |-
| |
− | | align="center" |
| |
− | This organization is not an OWASP member
| |
− | | |
− | |
| |
− | [http://www.google.com Acme Corp.] 123 Cartoon Street<br> Cartoonland, IL 60045<br>
| |
− | | |
− | |
| |
− | | |
− | | |
− | |
| |
− | ESAPI for Python
| |
− | | |
− | |-
| |
− | | bgcolor="#99cccc" align="center" |
| |
− | This organization is not an OWASP member<br>
| |
− | | |
− | | bgcolor="#99cccc" |
| |
− | [http://www.google.com Some Other Place Inc.] 456 Avenue<br> McLean, VA 22101<br>
| |
− | | |
− | | bgcolor="#99cccc" |
| |
− | | |
− | | |
− | | bgcolor="#99cccc" |
| |
− | ESAPI for Haskell
| |
− | | |
− | |}
| |
− | | |
− | <br> <br>
| |
− | | |
− | ==== Process Improvement ====
| |
− | | |
− | <br>Commercial OWASP SAMM process improvement providers are listed below. Organizations listed are not accredited by OWASP. Neither their products nor services have been endorsed by OWASP. <br><br>
| |
− | | |
− | {| width="100%" cellspacing="1" cellpadding="1" border="0" style=""
| |
− | |-
| |
− | ! bgcolor="#cccccc" scope="col" | OWASP Member<br>
| |
− | ! bgcolor="#cccccc" scope="col" | Organization Name<br>
| |
− | ! bgcolor="#cccccc" scope="col" | Organization POC<br>
| |
− | ! bgcolor="#cccccc" scope="col" | Business Functions<br>
| |
− | |-
| |
− | | [[Image:Preferences.png|center]]<br>
| |
− | |
| |
− | [http://www.aspectsecurity.com/ Aspect Security] 9175 Guilford Road, Suite 300 Columbia, MD 21046-2565<br>
| |
− | | |
− | |
| |
− | | |
− | | |
− | |
| |
− | Business Functions<br>Governance<br>Construction<br>Verification<br>Deployment
| |
− | | |
− | |-
| |
− | | bgcolor="#99cccc" | [[Image:Preferences.png|center]]<br>
| |
− | | bgcolor="#99cccc" |
| |
− | [http://www.boozallen.com Booz Allen Hamilton] 8283 Greensboro Drive McLean, VA 22102<br>
| |
− | | |
− | | bgcolor="#99cccc" |
| |
− | | |
− | | |
− | | bgcolor="#99cccc" |
| |
− | Construction<br>Verification<br>Deployment
| |
− | | |
− | |-
| |
− | | align="center" |
| |
− | This organization is not an OWASP member
| |
− | | |
− | |
| |
− | [http://www.google.com Acme Corp.] 123 Cartoon Street<br> Cartoonland, IL 60045<br>
| |
− | | |
− | |
| |
− | | |
− | | |
− | |
| |
− | Verification
| |
− | | |
− | |-
| |
− | | bgcolor="#99cccc" align="center" |
| |
− | This organization is not an OWASP member<br>
| |
− | | |
− | | bgcolor="#99cccc" |
| |
− | [http://www.google.com Some Other Place Inc.] 456 Avenue<br> McLean, VA 22101<br>
| |
− | | |
− | | bgcolor="#99cccc" |
| |
− | | |
− | | |
− | | bgcolor="#99cccc" |
| |
− | Business Functions
| |
− | | |
− | |}
| |
− | | |
− | <br> <br>
| |
− | | |
− | ==== Training ====
| |
− | | |
− | <br>Commercial OWASP Guide training providers are listed below. Organizations listed are not accredited by OWASP. Neither their products nor services have been endorsed by OWASP. <br><br>
| |
− | | |
− | {| width="100%" cellspacing="1" cellpadding="1" border="0" style=""
| |
− | |-
| |
− | ! bgcolor="#cccccc" scope="col" | OWASP Member<br>
| |
− | ! bgcolor="#cccccc" scope="col" | Organization Name<br>
| |
− | ! bgcolor="#cccccc" scope="col" | Organization POC<br>
| |
− | ! bgcolor="#cccccc" scope="col" | Guides<br>
| |
− | |-
| |
− | | [[Image:Preferences.png|center]]<br>
| |
− | |
| |
− | [http://www.aspectsecurity.com/ Aspect Security] 9175 Guilford Road, Suite 300 Columbia, MD 21046-2565<br>
| |
− | | |
− | |
| |
− | | |
− | | |
− | |
| |
− | Code Review Guide<br> Development Guide<br> Testing Guide<br>
| |
− | | |
− | |-
| |
− | | bgcolor="#99cccc" | [[Image:Preferences.png|center]]<br>
| |
− | | bgcolor="#99cccc" |
| |
− | [http://www.boozallen.com Booz Allen Hamilton] 8283 Greensboro Drive McLean, VA 22102<br>
| |
− | | |
− | | bgcolor="#99cccc" |
| |
− | | |
− | | |
− | | bgcolor="#99cccc" |
| |
− | Development Guide
| |
− | | |
− | |-
| |
− | | align="center" |
| |
− | This organization is not an OWASP member
| |
− | | |
− | |
| |
− | [http://www.google.com Acme Corp.] 123 Cartoon Street<br> Cartoonland, IL 60045<br>
| |
− | | |
− | |
| |
− | | |
− | | |
− | |
| |
− | Testing Guide
| |
− | | |
− | |-
| |
− | | bgcolor="#99cccc" align="center" |
| |
− | This organization is not an OWASP member<br>
| |
− | | |
− | | bgcolor="#99cccc" |
| |
− | [http://www.google.com Some Other Place Inc.] 456 Avenue<br> McLean, VA 22101<br>
| |
− | | |
− | | bgcolor="#99cccc" |
| |
− | | |
− | | |
− | | bgcolor="#99cccc" |
| |
− | Code Review Guide
| |
− | | |
− | |}
| |
− | | |
− | <br> <br> __NOTOC__ <headertabs />
| |
− | | |
− | <br>
| |
− | | |
− | [[Category:OWASP_Application_Security_Verification_Standard_Project]]
| |