|
|
(37 intermediate revisions by 4 users not shown) |
Line 1: |
Line 1: |
− | <br>'''<center>This is a DRAFT page!!</center>'''<br><br>
| + | *[[OWASP Related Commercial Services|New Project Page]], |
− | | + | *[[Commercial Services - First Attempt|Commercial Services - First Attempt - Not currently in use]]. |
− | ==== Home ====
| |
− | | |
− | {| width="100%"
| |
− | |-
| |
− | ! width="66%" | <br>
| |
− | ! width="33%" | <br>
| |
− | |- valign="top"
| |
− | |
| |
− | OWASP's mission is to make application security "visible," so that people and organizations can make informed decisions about application security risks. As a value-add to the website we have attempted to centralize OWASP project deliverable-based services for you in a single '''OWASP Commercial Services Registry'''. Examples of OWASP project deliverable-based services include: ASVS-based verification, ESAPI-based integration, SAMM-based process improvement, OWASP Guide-based training). Firms listed on the project tabs that are accessible from this page promote the development and consumption by industry and government of tools and techniques that are based on OWASP open standards, best practices and design patterns. To be listed in the OWASP Commercial Services Registry, you can find instructions [http://owasp-project-management.googlecode.com/svn/trunk/documentation/owasp-commercial-services-registry.doc here]. You can also contact the project lead [mailto:[email protected] here]. | |
− | <br>'''<center>OWASP does not endorse commercial products or services.</center>'''
| |
− | |
| |
− | [[Image:Asvs-ad-where-at.png]]
| |
− | | |
− | |}
| |
− | | |
− | <br>
| |
− | | |
− | ==== Verification ====
| |
− | | |
− | <br>Commercial OWASP ASVS verification providers are listed below. Organizations listed are not accredited by OWASP. Neither their products nor services have been endorsed by OWASP. Organizations listed either use ASVS or will help you use it. Provider listing requirements:
| |
− | | |
− | * Company name and link to corporate web site
| |
− | * Company location and markets served
| |
− | * Company area(s) of application technology expertise
| |
− | * ASVS verification levels offered
| |
− | * Approach to performing verifications
| |
− | * Contact name and email | |
− | | |
− | Listings are not allowed to exceed 100 words.
| |
− | | |
− | {| width="100%" cellspacing="1" cellpadding="1" border="0" style=""
| |
− | |-
| |
− | ! width="5%" | <br>
| |
− | ! width="90%" | <br>
| |
− | |-
| |
− | ! bgcolor="#cccccc" scope="col" | OWASP Member<br>
| |
− | ! bgcolor="#cccccc" scope="col" | Organization<br>
| |
− | |-
| |
− | | [[Image:Preferences.png|center]]<br>
| |
− | | ... another OWASP member organization...
| |
− | |-
| |
− | | bgcolor="#99cccc" | [[Image:Preferences.png|center]]<br>
| |
− | | bgcolor="#99cccc" |
| |
− | '''[http://www.thisisafakeurlforafakecompany.com Acme Application Security Co.] ([http://code.google.com/p/owasp-asvs/wiki/Levels_1A 1A] ,[http://code.google.com/p/owasp-asvs/wiki/Levels_1B 1B])'''
| |
− | | |
− | Acme Application Security Co. is headquartered in Memphis, Tennessee. Acme Application Security Co. serves both enterprises and governments. Areas of expertise include web 2.0 social media technologies. Acme Application Security Co.'s approach to performing dynamic scans (1A) combines passive vulnerability scanning with manually testing areas of interest. Our approach to performing source code scans (1B) targets both application code and goes beyond ASVS Level 1A requirements to additionally scan any open source underlying frameworks and libraries that were modified or extended to create your application. All reports are tailored to meet organization requirements. [mailto:[email protected] Contact us] for more information. | |
− |
| |
− | ''Last modified: April 14, 2010 - 8:36''
| |
− | | |
− | |-
| |
− | | align="center" |
| |
− | This organization is not an OWASP member
| |
− | | |
− | |
| |
− | ... not an OWASP member organization...<br>
| |
− | | |
− | |-
| |
− | | bgcolor="#99cccc" align="center" |
| |
− | This organization is not an OWASP member<br>
| |
− | | |
− | | bgcolor="#99cccc" |
| |
− | [http://www.google.com]... not an OWASP member organization...<br>
| |
− | | |
− | |}
| |
− | | |
− | <br> <br>
| |
− | | |
− | ==== Integration ====
| |
− | | |
− | <br>Commercial OWASP ESAPI integration providers are listed below. Organizations listed are not accredited by OWASP. Neither their products nor services have been endorsed by OWASP. <br><br>
| |
− | | |
− | {| width="100%" cellspacing="1" cellpadding="1" border="0" style=""
| |
− | |-
| |
− | ! bgcolor="#cccccc" scope="col" | OWASP Member<br>
| |
− | ! bgcolor="#cccccc" scope="col" | Organization Name<br>
| |
− | ! bgcolor="#cccccc" scope="col" | Organization POC<br>
| |
− | ! bgcolor="#cccccc" scope="col" | Programming Languages<br>
| |
− | |-
| |
− | | [[Image:Preferences.png|center]]<br>
| |
− | |
| |
− | [http://www.aspectsecurity.com/ Aspect Security] 9175 Guilford Road, Suite 300 Columbia, MD 21046-2565<br>
| |
− | | |
− | |
| |
− | | |
− | | |
− | |
| |
− | ESAPI for Java ESAPI for .NET<br>
| |
− | | |
− | |-
| |
− | | bgcolor="#99cccc" | [[Image:Preferences.png|center]]<br>
| |
− | | bgcolor="#99cccc" |
| |
− | [http://www.boozallen.com Booz Allen Hamilton] 8283 Greensboro Drive McLean, VA 22102<br>
| |
− | | |
− | | bgcolor="#99cccc" |
| |
− | | |
− | | |
− | | bgcolor="#99cccc" |
| |
− | ESAPI for PHP<br>
| |
− | | |
− | |-
| |
− | | align="center" |
| |
− | This organization is not an OWASP member
| |
− | | |
− | |
| |
− | [http://www.google.com Acme Corp.] 123 Cartoon Street<br> Cartoonland, IL 60045<br>
| |
− | | |
− | |
| |
− | | |
− | | |
− | |
| |
− | ESAPI for Python
| |
− | | |
− | |-
| |
− | | bgcolor="#99cccc" align="center" |
| |
− | This organization is not an OWASP member<br>
| |
− | | |
− | | bgcolor="#99cccc" |
| |
− | [http://www.google.com Some Other Place Inc.] 456 Avenue<br> McLean, VA 22101<br>
| |
− | | |
− | | bgcolor="#99cccc" |
| |
− | | |
− | | |
− | | bgcolor="#99cccc" |
| |
− | ESAPI for Haskell
| |
− | | |
− | |}
| |
− | | |
− | <br> <br>
| |
− | | |
− | ==== Process Improvement ====
| |
− | | |
− | <br>Commercial OWASP SAMM process improvement providers are listed below. Organizations listed are not accredited by OWASP. Neither their products nor services have been endorsed by OWASP. <br><br>
| |
− | | |
− | {| width="100%" cellspacing="1" cellpadding="1" border="0" style=""
| |
− | |-
| |
− | ! bgcolor="#cccccc" scope="col" | OWASP Member<br>
| |
− | ! bgcolor="#cccccc" scope="col" | Organization Name<br>
| |
− | ! bgcolor="#cccccc" scope="col" | Organization POC<br>
| |
− | ! bgcolor="#cccccc" scope="col" | Business Functions<br>
| |
− | |-
| |
− | | [[Image:Preferences.png|center]]<br>
| |
− | |
| |
− | [http://www.aspectsecurity.com/ Aspect Security] 9175 Guilford Road, Suite 300 Columbia, MD 21046-2565<br>
| |
− | | |
− | |
| |
− | | |
− | | |
− | |
| |
− | Business Functions<br>Governance<br>Construction<br>Verification<br>Deployment
| |
− | | |
− | |-
| |
− | | bgcolor="#99cccc" | [[Image:Preferences.png|center]]<br>
| |
− | | bgcolor="#99cccc" |
| |
− | [http://www.boozallen.com Booz Allen Hamilton] 8283 Greensboro Drive McLean, VA 22102<br>
| |
− | | |
− | | bgcolor="#99cccc" |
| |
− | | |
− | | |
− | | bgcolor="#99cccc" |
| |
− | Construction<br>Verification<br>Deployment
| |
− | | |
− | |-
| |
− | | align="center" |
| |
− | This organization is not an OWASP member
| |
− | | |
− | |
| |
− | [http://www.google.com Acme Corp.] 123 Cartoon Street<br> Cartoonland, IL 60045<br>
| |
− | | |
− | |
| |
− | | |
− | | |
− | |
| |
− | Verification
| |
− | | |
− | |-
| |
− | | bgcolor="#99cccc" align="center" |
| |
− | This organization is not an OWASP member<br>
| |
− | | |
− | | bgcolor="#99cccc" |
| |
− | [http://www.google.com Some Other Place Inc.] 456 Avenue<br> McLean, VA 22101<br>
| |
− | | |
− | | bgcolor="#99cccc" |
| |
− | | |
− | | |
− | | bgcolor="#99cccc" |
| |
− | Business Functions
| |
− | | |
− | |} | |
− | | |
− | <br> <br>
| |
− | | |
− | ==== Training ====
| |
− | | |
− | <br>Commercial OWASP Guide training providers are listed below. Organizations listed are not accredited by OWASP. Neither their products nor services have been endorsed by OWASP. <br><br>
| |
− | | |
− | {| width="100%" cellspacing="1" cellpadding="1" border="0" style=""
| |
− | |-
| |
− | ! bgcolor="#cccccc" scope="col" | OWASP Member<br>
| |
− | ! bgcolor="#cccccc" scope="col" | Organization Name<br>
| |
− | ! bgcolor="#cccccc" scope="col" | Organization POC<br>
| |
− | ! bgcolor="#cccccc" scope="col" | Guides<br>
| |
− | |-
| |
− | | [[Image:Preferences.png|center]]<br>
| |
− | |
| |
− | [http://www.aspectsecurity.com/ Aspect Security] 9175 Guilford Road, Suite 300 Columbia, MD 21046-2565<br>
| |
− | | |
− | |
| |
− | | |
− | | |
− | |
| |
− | Code Review Guide<br> Development Guide<br> Testing Guide<br>
| |
− | | |
− | |-
| |
− | | bgcolor="#99cccc" | [[Image:Preferences.png|center]]<br>
| |
− | | bgcolor="#99cccc" |
| |
− | [http://www.boozallen.com Booz Allen Hamilton] 8283 Greensboro Drive McLean, VA 22102<br>
| |
− | | |
− | | bgcolor="#99cccc" |
| |
− | | |
− | | |
− | | bgcolor="#99cccc" |
| |
− | Development Guide
| |
− | | |
− | |-
| |
− | | align="center" |
| |
− | This organization is not an OWASP member
| |
− | | |
− | |
| |
− | [http://www.google.com Acme Corp.] 123 Cartoon Street<br> Cartoonland, IL 60045<br>
| |
− | | |
− | |
| |
− | | |
− | | |
− | |
| |
− | Testing Guide
| |
− | | |
− | |-
| |
− | | bgcolor="#99cccc" align="center" |
| |
− | This organization is not an OWASP member<br>
| |
− | | |
− | | bgcolor="#99cccc" |
| |
− | [http://www.google.com Some Other Place Inc.] 456 Avenue<br> McLean, VA 22101<br>
| |
− | | |
− | | bgcolor="#99cccc" |
| |
− | | |
− | | |
− | | bgcolor="#99cccc" |
| |
− | Code Review Guide
| |
− | | |
− | |}
| |
− | | |
− | <br> <br> __NOTOC__ <headertabs />
| |
− | | |
− | <br>
| |
− | | |
− | [[Category:OWASP_Application_Security_Verification_Standard_Project]]
| |