This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org

Difference between revisions of "Projects/OWASP AppSensor Handbook"

From OWASP
Jump to: navigation, search
(Created page with " {{Template:<includeonly>{{{1}}}</includeonly><noinclude>Project About</noinclude> | project_name = OWASP AppSensor Project | project_home_page = :Category:OWASP AppSensor Pro...")
 
(Blanked the page)
 
(One intermediate revision by the same user not shown)
Line 1: Line 1:
  
{{Template:<includeonly>{{{1}}}</includeonly><noinclude>Project About</noinclude>
 
| project_name = OWASP AppSensor Project
 
| project_home_page = :Category:OWASP AppSensor Project
 
| project_description =
 
Real Time Application Attack Detection and Response
 
'''Overview'''
 
The AppSensor project defines a conceptual framework and methodology that offers prescriptive guidance to implement intrusion detection and automated response into an existing application. Current efforts are underway to create the AppSensor tool which can be utilized by any existing application interested in adding detection and response capabilities.
 
<br>'''Detection'''
 
AppSensor defines over 50 different [http://www.owasp.org/index.php/AppSensor_DetectionPoints detection points] which can be used to identify a malicious attacker.
 
<br>'''Response'''
 
AppSensor provides guidance on how to respond once a malicious attacker has been identified. Possible actions include: logging out the user, locking the account or notifying an administrator.  More than a dozen [http://www.owasp.org/index.php/AppSensor_ResponseActions response actions] are described.
 
<br>'''Defending the Application'''
 
An attacker often requires numerous probes and attack attempts in order to locate an exploitable vulnerability within the application. By using AppSensor it is possible to identify and eliminate the threat of an attacker before they are able to successfully identify an exploitable flaw.
 
 
| project_license = [http://creativecommons.org/licenses/by-sa/3.0/ '''Creative Commons Attribution Share Alike 3.0''' for documentation] & [http://www.opensource.org/licenses/bsd-license.php '''New BSD License''' for Tools] 
 
 
| leader_name1 = Michael Coates
 
| leader_email1 = [email protected]
 
| leader_username1 = MichaelCoates
 
 
| leader_name2 = John Melton
 
| leader_email2 = [email protected]
 
| leader_username2 = John Melton
 
 
| leader_name3 = Colin Watson
 
| leader_email3 = [email protected]
 
| leader_username3 = Clerkendweller
 
 
| leader_name4 = Dennis Groves
 
| leader_email4 = [email protected]
 
| leader_username4 = DennisGroves
 
 
| contributor_name1 = Ryan Barnett
 
| contributor_email1 = [email protected]
 
| contributor_username1 = Rcbarnett
 
 
| contributor_name2 = Simon Bennetts
 
| contributor_email2 =
 
| contributor_username2 = Simon Bennetts
 
 
| contributor_name3 = August Detlefsen
 
| contributor_email3 =
 
| contributor_username3 =
 
 
| contributor_name4 = Randy Janida
 
| contributor_email4 =
 
| contributor_username4 =
 
 
| contributor_name5 = Jim Manico
 
| contributor_email5 = [email protected]
 
| contributor_username5 = Jmanico
 
 
| contributor_name6 = Giri Nambari
 
| contributor_email6 =
 
| contributor_username6 =
 
 
| contributor_name7 = Eric Sheridan
 
| contributor_email7 =
 
| contributor_username7 = Esheridan
 
 
| contributor_name8 = John Stevens
 
| contributor_email8 =
 
| contributor_username8 = [email protected]
 
 
| contributor_name8 = Kevin Wall
 
| contributor_email8 =
 
| contributor_username8 =
 
 
| contributor_name9 = Dennis Groves
 
| contributor_email9 =
 
| contributor_username9 =
 
 
| pamphlet_link = http://code.google.com/p/appsensor/downloads/detail?name=Defend_Yourself-Integrating_Real_Time_Defenses_into_Online_Applications-Michael_Coates.pdf&can=2&q=
 
 
| presentation_link = http://www.owasp.org/images/0/06/Defend_Yourself-Integrating_Real_Time_Defenses_into_Online_Applications-Michael_Coates.pdf
 
 
| mailing_list_name = https://lists.owasp.org/mailman/listinfo/owasp-appsensor-project
 
 
| project_road_map = http://www.owasp.org/index.php/OWASP_AppSensor_Project#tab=Project_Roadmap
 
 
| links_url1 = http://www.owasp.org/index.php/AppSensor_Developer_Guide
 
| links_name1 = AppSensor & ESAPI Developer's Guide
 
 
| links_url2 = http://code.google.com/p/appsensor/source/browse/trunk/AppSensor-Tutorial/
 
| links_name2 = AppSensor Tutorial
 
 
| links_url3 = https://www.owasp.org/images/2/2f/OWASP_AppSensor_Beta_1.1.pdf
 
| links_name3 = Download AppSensor Book - PDF
 
 
| links_url4 = https://www.owasp.org/images/b/b0/OWASP_AppSensor_Beta_1.1.doc
 
| links_name4 = Download AppSensor Book - Word
 
 
| links_url5 = http://www.brighttalk.com/webcast/20680
 
| links_name5 = Automated Application Defenses to Thwart Advanced Attackers
 
 
| links_url6 = https://www.owasp.org/index.php/File:Appsensor-pid.pdf
 
| links_name6 = Diagram
 
 
| links_url7 = http://www.youtube.com/watch?v=8ItfuwvLxRk
 
| links_name7 = Live Demo
 
 
| links_url8 = http://code.google.com/p/appsensor/
 
| links_name8 = AppSensor Code
 
 
| links_url9 = https://www.owasp.org/index.php/Project_Information:template_AppSensor_Project
 
| links_name9 = Former Project About
 
 
| release_1 = AppSensor 0.1.3
 
 
| release_2 =
 
 
| release_3 =
 
 
| release_4 =
 
<!--- The line below is for GPC usage only. Please do not edit it --->
 
| project_about_page = Projects/OWASP AppSensor Project
 
}}
 

Latest revision as of 23:42, 30 October 2013