This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org

Difference between revisions of "OWASP Project Inventory"

From OWASP
Jump to: navigation, search
(Incubator Projects)
(Added redirect)
 
(28 intermediate revisions by 7 users not shown)
Line 1: Line 1:
 +
#REDIRECT[[OWASP_Project]]
 +
 
__NOTOC__  
 
__NOTOC__  
 
{|
 
{|
Line 10: Line 12:
 
|}
 
|}
  
 +
= Quick Guides to OWASP Projects =
 +
 +
[[File:Owasp Dev Guide-2.png | 800px | left ]]
  
 
= Incubator Projects  =
 
= Incubator Projects  =
Line 31: Line 36:
 
* [[OWASP_Java_File_I_O_Security_Project|OWASP Java File I/O Security Project]]
 
* [[OWASP_Java_File_I_O_Security_Project|OWASP Java File I/O Security Project]]
 
* [[OWASP_PHP_Security_Project|OWASP PHP Security Project]]
 
* [[OWASP_PHP_Security_Project|OWASP PHP Security Project]]
* [[OWASP_Node_js_Goat_Project|OWASP Node.js Goat Project]] [[File:Thumbsup.png|15px]
+
* [[OWASP_Node_js_Goat_Project|OWASP Node.js Goat Project]] [[File:Thumbsup.png|15px]]
 
* [[OWASP_File_Format_Validation_Project|OWASP File Format Validation Project]]
 
* [[OWASP_File_Format_Validation_Project|OWASP File Format Validation Project]]
 
* [[OWASP_Security_Logging_Project|OWASP Security Logging Project]]
 
* [[OWASP_Security_Logging_Project|OWASP Security Logging Project]]
 
  
 
=====Code: Low Activity=====
 
=====Code: Low Activity=====
Line 69: Line 73:
 
*[[OWASP_HTTP_Post_Tool|OWASP HTTP POST Tool]]
 
*[[OWASP_HTTP_Post_Tool|OWASP HTTP POST Tool]]
 
*[[Projects/OWASP_iOSForensic|OWASP iOSForensic]]
 
*[[Projects/OWASP_iOSForensic|OWASP iOSForensic]]
*[[OWASP_SonarQube_Project|OWASP SonarQube Project]]
 
 
*[[OWASP Rainbow Maker Project | OWASP Rainbow Maker Project]]  
 
*[[OWASP Rainbow Maker Project | OWASP Rainbow Maker Project]]  
 
*[[OWASP JSEC CVE Details | OWASP JSEC CVE Details]]  
 
*[[OWASP JSEC CVE Details | OWASP JSEC CVE Details]]  
Line 76: Line 79:
  
 
====Documentation[Review: May 2015]====
 
====Documentation[Review: May 2015]====
 +
*[[OWASP_Snakes_and_Ladders|OWASP Snakes and Ladders Project]]
 
*[[OWASP Automated Threats to Web Applications]]
 
*[[OWASP Automated Threats to Web Applications]]
 
*[[OWASP_Data_Exchange_Format_Project|OWASP Data Exchange Format Project]]
 
*[[OWASP_Data_Exchange_Format_Project|OWASP Data Exchange Format Project]]
Line 94: Line 98:
 
*[[OWASP_Secure_Configuration_Guide|OWASP_Secure_Configuration_Guide]]
 
*[[OWASP_Secure_Configuration_Guide|OWASP_Secure_Configuration_Guide]]
 
*[[OWASP_Knowledge_Based_Authentication_Performance_Metrics_Project|OWASP_Knowledge_Based_Authentication_Performance_Metrics_Project]]
 
*[[OWASP_Knowledge_Based_Authentication_Performance_Metrics_Project|OWASP_Knowledge_Based_Authentication_Performance_Metrics_Project]]
* [[OWASP_RFP-Criteria|OWASP Request For Proposal]]
+
*[[OWASP_RFP-Criteria|OWASP Request For Proposal]]
 +
*[[OWASP_OWASP_Snakes_and_Ladders|OWASP Snakes and Ladders]] 1/22/16
  
 
==Educational Initiatives==
 
==Educational Initiatives==
Line 133: Line 138:
 
<font size=2pt>
 
<font size=2pt>
 
==Labs Projects==
 
==Labs Projects==
 +
 +
[[File:Lab banner.jpg]]
  
 
OWASP Labs projects represent projects that have produced a deliverable of value. While these projects are typically not production ready, the OWASP community expects that an OWASP Labs project leader is producing releases that are at least ready for mainstream usage.
 
OWASP Labs projects represent projects that have produced a deliverable of value. While these projects are typically not production ready, the OWASP community expects that an OWASP Labs project leader is producing releases that are at least ready for mainstream usage.
Line 140: Line 147:
  
 
====Tools [Reviewed February 2015]====
 
====Tools [Reviewed February 2015]====
 +
* [[O-Saft|O-Saft]]
 +
* [[OWASP_Dependency_Track_Project|OWASP Dependency Track Project]]
 +
* [[:Category:OWASP_EnDe|OWASP EnDe Project]]
 
* [[OWASP_Hackademic_Challenges_Project|OWASP Hackademic Challenges Project]]
 
* [[OWASP_Hackademic_Challenges_Project|OWASP Hackademic Challenges Project]]
 
* [[OWASP_Mantra_-_Security_Framework|OWASP Mantra Security Framework]]
 
* [[OWASP_Mantra_-_Security_Framework|OWASP Mantra Security Framework]]
 +
* [[OWASP_Mobile_Security_Project|OWASP Mobile Security Project]]
 
* [[OWASP_O2_Platform|OWASP O2 Platform]]
 
* [[OWASP_O2_Platform|OWASP O2 Platform]]
* [[OWASP_Security_Shepherd|OWASP Security Shepherd]]  
+
* [[OWASP_Passfault|OWASP Passfault]]
 +
* [https://www.owasp.org/index.php/Category:OWASP_Security_Ninjas_AppSec_Training_Program OWASP Security Ninjas Appsec Training]
 +
* [[OWASP_Security_Shepherd|OWASP Security Shepherd]]
 
* [[:Category:OWASP WebGoat Project|OWASP WebGoat Project]]  
 
* [[:Category:OWASP WebGoat Project|OWASP WebGoat Project]]  
* [[O-Saft|O-Saft]]
+
* [[OWASP_Xenotix_XSS_Exploit_Framework|OWASP Xenotix XSS Exploit Framework]]
* [[:Category:OWASP_EnDe|OWASP EnDe Project]]
+
* [[OWASP_iMAS_iOS_Mobile_Application_Security_Project|OWASP iMAS - iOS Mobile Application Security Project]]
* [[OWASP_Passfault|OWASP Passfault]]  
+
*[[OWASP_Juice_Shop_Project|OWASP Juice Shop Project]][[File:Thumbsup.png|15px]]
*[[OWASP_Xenotix_XSS_Exploit_Framework|OWASP Xenotix XSS Exploit Framework]]
 
  
 
====Documentation [In Progress-Results by February/March 2015] ====
 
====Documentation [In Progress-Results by February/March 2015] ====
  
* [[OWASP_Podcast|OWASP Podcast Project]]
+
* [[OWASP_Application_Security_Guide_For_CISOs_Project|OWASP Application Security Guide For CISOs]]
 +
* [[Cheat_Sheets|OWASP Cheat Sheets Project]] [[File:Thumbsup.png|15px]]
 +
* [[OWASP_CISO_Survey|OWASP CISO Survey]]  
 
* [[:Category:OWASP_Code_Review_Project|OWASP Code Review Guide Project]]
 
* [[:Category:OWASP_Code_Review_Project|OWASP Code Review Guide Project]]
 +
* [[OWASP_Codes_of_Conduct|OWASP Codes of Conduct]]
 +
* [[OWASP_Cornucopia|OWASP Cornucopia]]
 
* [[:Category:OWASP_Guide_Project|OWASP Development Guide Project]]
 
* [[:Category:OWASP_Guide_Project|OWASP Development Guide Project]]
*[[OWASP_CISO_Survey|OWASP CISO Survey]]  
+
* [[OWASP_Podcast|OWASP Podcast Project]]
*[[OWASP_Application_Security_Guide_For_CISOs_Project|OWASP Application Security Guide For CISOs]]
+
* [[OWASP_Proactive_Controls|OWASP Proactive Controls]]  
*[[OWASP_Cornucopia|OWASP Cornucopia]]
+
* [[OWASP_Internet_of_Things_Top_Ten_Project|OWASP Internet of Things Top Ten Project]]
*[[Cheat_Sheets|OWASP Cheat Sheets Project]] [[File:Thumbsup.png|15px]]
+
* [[OWASP_Top_10_Privacy_Risks_Project|OWASP Top 10 Privacy Risks Project]]
  
 
====Contests====
 
====Contests====
Line 166: Line 182:
 
====Code [Reviewed February 2015]====
 
====Code [Reviewed February 2015]====
 
* [[:Category:OWASP_Enterprise_Security_API|OWASP Enterprise Security API]]
 
* [[:Category:OWASP_Enterprise_Security_API|OWASP Enterprise Security API]]
 +
* [[OWASP_Python_Security_Project|OWASP Python Security Project]]
  
 
======Low Activity (LABS)[Reviewed February 2015] ======
 
======Low Activity (LABS)[Reviewed February 2015] ======
 +
[[File:low_activity.jpg]]
 +
 
These projects had no releases in at least a year, however have shown to be valuable tools
 
These projects had no releases in at least a year, however have shown to be valuable tools
Code [Low Activity]
+
 
 +
'''Code [Low Activity]'''
 
* [[Project_Information:template_Vicnum_Project|OWASP Vicnum Project]]
 
* [[Project_Information:template_Vicnum_Project|OWASP Vicnum Project]]
 
* [[OWASP_Broken_Web_Applications_Project|OWASP Broken Web Applications Project]]
 
* [[OWASP_Broken_Web_Applications_Project|OWASP Broken Web Applications Project]]
 +
* [[OWASP_Joomla_Vulnerability_Scanner_Project]]
  
Documentation [Low Activity]
+
'''Documentation [Low Activity]'''
 
* [[OWASP_Appsec_Tutorial_Series|OWASP AppSec Tutorial Series]]
 
* [[OWASP_Appsec_Tutorial_Series|OWASP AppSec Tutorial Series]]
 
* [[:Category:OWASP_Legal_Project|OWASP Legal Project]]
 
* [[:Category:OWASP_Legal_Project|OWASP Legal Project]]
 
* [[Virtual_Patching_Best_Practices|Virtual Patching Best Practices]]
 
* [[Virtual_Patching_Best_Practices|Virtual Patching Best Practices]]
* [[OWASP_Codes_of_Conduct|OWASP Codes of Conduct]]
 
 
* [[OWASP_Secure_Coding_Practices_-_Quick_Reference_Guide|OWASP Secure Coding Practices - Quick Reference Guide]]
 
* [[OWASP_Secure_Coding_Practices_-_Quick_Reference_Guide|OWASP Secure Coding Practices - Quick Reference Guide]]
  
Line 183: Line 203:
 
<font size=2pt>
 
<font size=2pt>
 
==Flagship Projects==
 
==Flagship Projects==
 +
[[File:Flagship_banner.jpg]]
  
 
The OWASP Flagship designation is given to projects that have demonstrated strategic value to OWASP and application security as a whole.
 
The OWASP Flagship designation is given to projects that have demonstrated strategic value to OWASP and application security as a whole.
 +
After a major review process [[https://www.owasp.org/index.php/LAB_Projects_Code_Analysis_Report More info here]] the following projects are considered to be flagship candidate projects. These project have been evaluated more deeply to confirm their flagship status:
  
 
====Tools [Reviewed September 2014]====
 
====Tools [Reviewed September 2014]====
Line 341: Line 363:
 
* [https://www.owasp.org/index.php/OWASP_OpenStack_Security_Project OWASP OpenStack Security Project]
 
* [https://www.owasp.org/index.php/OWASP_OpenStack_Security_Project OWASP OpenStack Security Project]
 
* [https://www.owasp.org/index.php/OWASP_File_Format_Validation_Project OWASP File Format Validation Project]
 
* [https://www.owasp.org/index.php/OWASP_File_Format_Validation_Project OWASP File Format Validation Project]
 +
* [[OWASP_SonarQube_Project|OWASP SonarQube Project]]
  
 
</font>
 
</font>
Line 442: Line 465:
 
*[https://www.owasp.org/index.php/OWASP_SonarQube_Project OWASP SonarQube Project]
 
*[https://www.owasp.org/index.php/OWASP_SonarQube_Project OWASP SonarQube Project]
 
*[https://www.owasp.org/index.php/OWASP_URL_Checker OWASP URL Checker]
 
*[https://www.owasp.org/index.php/OWASP_URL_Checker OWASP URL Checker]
 +
*[https://www.owasp.org/index.php/OWASP_Juice_Shop_Project OWASP Juice Shop]
  
 
==Documentation==
 
==Documentation==

Latest revision as of 23:13, 5 April 2018

Redirect to:



Owasp banner web pro.jpg
Owasp Dev Guide-2.png

Incubator banner.jpg

OWASP Incubator projects represent the experimental playground where projects are still being fleshed out, ideas are still being proven, and development is still underway. The “OWASP Incubator” label allows OWASP consumers to readily identify a project’s maturity. The label also allows project leaders to leverage the OWASP name while their project is still maturing.

Thumbs up

Thumbs up are given to incubator projects showing a steady progress in their development, had continuous releases and commits or have delivered a complete product, including open source repository location, basic user guidelines and documentation


Code [Reviewed March 2015]

Code: Low Activity

Research

Tools [Reviewed last: May 2015]

Documentation[Review: May 2015]

Educational Initiatives




                                                                                                                             

Labs Projects

Lab banner.jpg

OWASP Labs projects represent projects that have produced a deliverable of value. While these projects are typically not production ready, the OWASP community expects that an OWASP Labs project leader is producing releases that are at least ready for mainstream usage.

Thumbs up

Thumbs up are given to LAB projects showing a steady progress in their development, had very active and continuous releases and commits, regular update of information on their wiki page and have quite complete documentation. These projects are almost ready to become flagship

Tools [Reviewed February 2015]

Documentation [In Progress-Results by February/March 2015]

Contests

Code [Reviewed February 2015]

Low Activity (LABS)[Reviewed February 2015]

Low activity.jpg

These projects had no releases in at least a year, however have shown to be valuable tools

Code [Low Activity]

Documentation [Low Activity]

Flagship Projects

Flagship banner.jpg

The OWASP Flagship designation is given to projects that have demonstrated strategic value to OWASP and application security as a whole. After a major review process [More info here] the following projects are considered to be flagship candidate projects. These project have been evaluated more deeply to confirm their flagship status:

Tools [Reviewed September 2014]

Code [Reviewed November 2014]

Documentation[Reviewed February 2015] in progress

Archived Projects

OWASP Archived Projects are inactive Labs projects. If you are interested in pursuing any of the projects below, please contact us and let us know of your interest.

Code

Tools

Documentation