This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org
Difference between revisions of "OWASP Education Material Categorized"
From OWASP
| Line 5: | Line 5: | ||
==== Profession / Interest ==== | ==== Profession / Interest ==== | ||
Below you find the education material categorized by profession and interest. | Below you find the education material categorized by profession and interest. | ||
| − | { | + | {{Template:Education Info |
| − | + | | title = '''Management''' | |
| − | + | | beginner = * training material | |
| − | + | | experienced = * training material | |
| − | + | | expert = * training material | |
| − | * training material | + | }} |
| − | + | {{Template:Education Info | |
| − | + | | title = '''Student''' | |
| − | + | | beginner = * training material | |
| − | * training material | + | | experienced = * training material |
| − | + | | expert = * training material | |
| − | + | }} | |
| − | + | {{Template:Education Info | |
| − | * training material | + | | title = '''Developer''' |
| − | + | | beginner = * training material | |
| − | { | + | | experienced = * training material |
| − | + | | expert = * training material | |
| − | + | }} | |
| − | + | {{Template:Education Info | |
| − | + | | title = '''Tester''' | |
| − | * training material | + | | beginner = * training material |
| − | + | | experienced = * training material | |
| − | + | | expert = * training material | |
| − | + | }} | |
| − | * training material | ||
| − | |||
| − | |||
| − | |||
| − | * training material | ||
| − | |||
| − | { | ||
| − | |||
| − | |||
| − | |||
| − | |||
| − | * training material | ||
| − | |||
| − | |||
| − | |||
| − | * training material | ||
| − | |||
| − | |||
| − | |||
| − | * training material | ||
| − | |||
| − | { | ||
| − | |||
| − | |||
| − | |||
| − | |||
| − | * training material | ||
| − | |||
| − | |||
| − | |||
| − | * training material | ||
| − | |||
| − | |||
| − | |||
| − | * training material | ||
| − | |||
<br> | <br> | ||
| Line 546: | Line 510: | ||
==== SAMM Disciplines & Functions ==== | ==== SAMM Disciplines & Functions ==== | ||
| − | {| | + | {| {{Template:Education Table Header | title = '''Alignment & Governance'''}} |
| − | + | {{Template:Education Table Row | title = Education & Guidance | text = * training material}} | |
| − | + | {{Template:Education Table Row | title = Standards & Compliance | text = * training material}} | |
| − | + | {{Template:Education Table Row | title = Strategic Planning | text = * training material}} | |
| − | |||
| − | * training material | ||
| − | |||
| − | |||
| − | |||
| − | * training material | ||
| − | |||
| − | |||
| − | |||
| − | * training material | ||
|} | |} | ||
| − | {| | + | {| {{Template:Education Table Header | title = '''Requirements & Design'''}} |
| − | + | {{Template:Education Table Row | title = Threat Modeling | text = * training material}} | |
| − | + | {{Template:Education Table Row | title = Security Requirements | text = * training material}} | |
| − | + | {{Template:Education Table Row | title = Defensive Design | text = * training material}} | |
| − | |||
| − | * training material | ||
| − | |||
| − | |||
| − | |||
| − | * training material | ||
| − | |||
| − | |||
| − | |||
| − | * training material | ||
|} | |} | ||
| − | {| | + | {| {{Template:Education Table Header | title = '''Verification & Assessment'''}} |
| − | + | {{Template:Education Table Row | title = Architecture Review | text = * training material}} | |
| − | + | {{Template:Education Table Row | title = Code Review | text = * training material}} | |
| − | + | {{Template:Education Table Row | title = Security Testing | text = * training material}} | |
| − | |||
| − | * training material | ||
| − | |||
| − | |||
| − | |||
| − | * training material | ||
| − | |||
| − | |||
| − | |||
| − | * training material | ||
|} | |} | ||
| − | {| | + | {| {{Template:Education Table Header | title = '''Deployment & Operations'''}} |
| − | + | {{Template:Education Table Row | title = Vulnerability Management | text = * training material}} | |
| − | + | {{Template:Education Table Row | title = Infrastructure Hardening | text = * training material}} | |
| − | + | {{Template:Education Table Row | title = Operational Enablement | |
| − | |||
| − | * training material | ||
| − | |||
| − | |||
| − | |||
| − | * training material | ||
| − | |||
| − | |||
* beginner | * beginner | ||
| − | * | + | * intermediate |
| − | * expert | + | * expert | text = * training material}} |
| − | |||
| − | * training material | ||
|} | |} | ||
| + | |||
__NOTOC__ | __NOTOC__ | ||
<headertabs/> | <headertabs/> | ||
[[Category:OWASP Education Project]] | [[Category:OWASP Education Project]] | ||
Revision as of 04:58, 11 October 2010
Education Material Categorized
back to the [Education Project]
Profession / Interest
Below you find the education material categorized by profession and interest.
|
Management | |||
|---|---|---|---|
| Beginner |
| ||
| Experienced |
| ||
| Expert |
| ||
|
Student | |||
|---|---|---|---|
| Beginner |
| ||
| Experienced |
| ||
| Expert |
| ||
|
Developer | |||
|---|---|---|---|
| Beginner |
| ||
| Experienced |
| ||
| Expert |
| ||
|
Tester | |||
|---|---|---|---|
| Beginner |
| ||
| Experienced |
| ||
| Expert |
| ||
OWASP Top Ten
The OWASP Top Ten represents a broad consensus about what the most critical web application security flaws are. Project members include a variety of security experts from around the world who have shared their expertise to produce this list. There are currently versions in English, French, Japanese, Korean and Turkish. A Spanish version is in the works. We urge all companies to adopt this awareness document within their organization and start the process of ensuring that their web applications do not contain these flaws. Adopting the OWASP Top Ten is perhaps the most effective first step towards changing the software development culture within your organization into one that produces secure code.
| Presentation |
| ||
| Video's |
| ||
| Presentation |
| ||
| Video's |
| ||
| Presentation |
| ||
| Video's |
| ||
| Presentation |
| ||
| Video's |
| ||
| Presentation |
| ||
| Video's |
| ||
| Presentation |
| ||
| Video's |
| ||
| Presentation |
| ||
| Video's |
| ||
| Presentation |
| ||
| Video's |
| ||
| Presentation |
| ||
| Video's |
| ||
| Presentation |
| ||
| Video's |
| ||
OWASP Tooling
An OWASP Project is a collection of related tasks that have a defined roadmap and team members. OWASP project leaders are responsible for defining the vision, roadmap, and tasks for the project. The project leader also promotes the project and builds the team. Tools and documents are organized into the following categories: PROTECT - These are tools and documents that can be used to guard against security-related design and implementation flaws. DETECT - These are tools and documents that can be used to find security-related design and implementation flaws. LIFE CYCLE - These are tools and documents that can be used to add security-related activities into the Software Development Life Cycle (SDLC).
Protect:
| Beginner |
| ||
| Experienced |
| ||
| Expert |
| ||
| Video's |
| ||
| Beginner |
| ||
| Experienced |
| ||
| Expert |
| ||
Detect:
| Beginner |
| ||
| Experienced |
| ||
| Expert |
| ||
| Beginner |
| ||
| Experienced |
| ||
| Expert |
| ||
Life Cycle:
| Beginner |
| ||
| Experienced |
| ||
| Expert |
| ||
OWASP Documentation
An OWASP Project is a collection of related tasks that have a defined roadmap and team members. OWASP project leaders are responsible for defining the vision, roadmap, and tasks for the project. The project leader also promotes the project and builds the team. Tools and documents are organized into the following categories: PROTECT - These are tools and documents that can be used to guard against security-related design and implementation flaws. DETECT - These are tools and documents that can be used to find security-related design and implementation flaws. LIFE CYCLE - These are tools and documents that can be used to add security-related activities into the Software Development Life Cycle (SDLC).
Protect:
| Beginner |
| ||
| Experienced |
| ||
| Expert |
| ||
| Beginner |
| ||
| Experienced |
| ||
| Expert |
| ||
Detect:
| Beginner |
| ||
| Experienced |
| ||
| Expert |
| ||
| Beginner |
| ||
| Experienced |
| ||
| Expert |
| ||
| Beginner |
| ||
| Experienced |
| ||
| Expert |
| ||
Life Cycle:
| Beginner |
| ||
| Experienced |
| ||
| Expert |
| ||
| Beginner |
| ||
| Experienced |
| ||
| Expert |
| ||
| Beginner |
| ||
| Experienced |
| ||
| Expert |
| ||
CLASP roles
CLASP (Comprehensive, Lightweight Application Security Process) provides a well-organized and structured approach for moving security concerns into the early stages of the software development lifecycle, whenever possible.
| Architect | |||
|---|---|---|---|
| Beginner |
| ||
| Experienced |
| ||
| Expert |
| ||
| Designer | |||
|---|---|---|---|
| Beginner |
| ||
| Experienced |
| ||
| Expert |
| ||
| Implementer | |||
|---|---|---|---|
| Beginner |
| ||
| Experienced |
| ||
| Expert |
| ||
| Project Manager | |||
|---|---|---|---|
| Beginner |
| ||
| Experienced |
| ||
| Expert |
| ||
| Requirements Specifier | |||
|---|---|---|---|
| Beginner |
| ||
| Experienced |
| ||
| Expert |
| ||
| Security Auditor | |||
|---|---|---|---|
| Beginner |
| ||
| Experienced |
| ||
| Expert |
| ||
| Test Analyst | |||
|---|---|---|---|
| Beginner |
| ||
| Experienced |
| ||
| Expert |
| ||
SAMM Disciplines & Functions
|
Alignment & Governance | |||
|---|---|---|---|
| Education & Guidance |
| ||
| Standards & Compliance |
| ||
| Strategic Planning |
| ||
|
Requirements & Design | |||
|---|---|---|---|
| Threat Modeling |
| ||
| Security Requirements |
| ||
| Defensive Design |
| ||
|
Verification & Assessment | |||
|---|---|---|---|
| Architecture Review |
| ||
| Code Review |
| ||
| Security Testing |
| ||
|
Deployment & Operations | |||
|---|---|---|---|
| Vulnerability Management |
| ||
| Infrastructure Hardening |
| ||
Operational Enablement
|
| ||
