This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit

Difference between revisions of "OWASP Stinger Version 3"

Jump to: navigation, search
Line 13: Line 13:
==Project Lead==
==Project Lead==
The OWASP Stinger Project is lead by [mailto:[email protected] Eric Sheridan]
The OWASP Stinger Project is led by [mailto:[email protected] Eric Sheridan]

Revision as of 19:39, 23 November 2006


The J2EE platform does not include any validation features. This leaves many organizations to craft their own validation mechanisms, often incomplete, flawed, and inefficient.

The 3.x series will mark the evolution of the Stinger project from a J2EE validation engine to a full commercial quality web application firewall. OWASP Stinger 3.x will have some of the following notable features:

  • Validation of the entire HTTP request: including URI, headers, cookies, and parameters
  • A robust "learning" mode to make rule generation simplistic and efficient.
  • A full web application dedicated to editing the OWASP Stinger configuration files

Check out the full list of new features being implemented at the OWASP Stinger 3.x ideas page.

Project Lead

The OWASP Stinger Project is led by Eric Sheridan


Stinger is offered under the LGPL. For further information on OWASP licenses, please consult the OWASP Licenses page.


  • Click here to view the OWASP Stinger 3.x ideas page!

Feedback and Participation

We hope you find Stinger useful. Please contribute back to the project by sending your comments, questions, and suggestions to the Stinger mailing list. Thanks!

To join the OWASP Stinger mailing list or view the archives, please visit the subscription page.

Project Sponsors

The OWASP Stinger project is sponsored by Aspect_logo.gif.