Projects/Reports/2013-13-09

= OWASP Global Projects Report =


 * Project Numbers
 * Active Projects: 135
 * Inactive Projects: 103


 * New Project Applications
 * OWASP JAWS Project


 * New OWASP Projects
 * OWASP Framework Security Project
 * OWASP Ruby on Rails Security Guide Project - Adoption


 * Projects Under Review
 * OWASP Cheat Sheets Project
 * OWASP Java HTML Sanitizer Project (Testing)
 * Xenotix XSS Exploit Framework
 * OWASP Cornucopia Project (Testing)
 * OWASP Java Encoder Project (Testing)
 * Project reviews are on hold until the Technical Advisory group complete and test the updated assessment criteria.

Currently Working On

 * Technical Project Advisors: Work Update
 * The Advisors and I met this week to discuss their review of the current Assessment criteria.
 * We also reviewed Chuck's comments, and discussed each in more detail.
 * We made some changes to the original document, and I've put together a revised draft based on our conversation.
 * Here is Ly's original document with Chuck's comments and my notes.
 * Here is the new revised draft.
 * We plan to use the revised draft to test 3 projects against the criteria.
 * Project being reviewed are the following:
 * OWASP Java HTML Sanitizer Project (Testing)
 * OWASP Cornucopia Project (Testing)
 * OWASP Java Encoder Project (Testing)


 * Women in AppSec: AppSec USA 2013
 * This week, the team selected three new members for the Women in AppSec Selection Committee.
 * These individuals will help review the applications and select the two winners.
 * The following people make up the selection committee: Helen Gao, Bev Corwin, Jim Manico, Tom Ryan, Lucas Ferreira, and Samantha Groves.
 * Once the selection committee was established, we began discussing the selection criteria in more detail.
 * We are now in the third version of the criteria.
 * Women in AppSec Program Selection Criteria: 3rd Draft.
 * We plan on beginning our selection process after the 9th of September once the application deadline has passed.
 * Women in AppSec Application Form.
 * The application deadline is Monday, September 09, 2013 at 5pm GMT.
 * The deadline for sponsors is Monday, September 09, 2013, as well.


 * Grants & Fundraising Intern
 * My search for a Grants & Fundraising intern is coming to an end
 * I received four applications for the role, and I have scheduled interviews with each applicant for next week.
 * I will make a decision next week, and announce the successful applicant on the 9th of September.
 * Application Deadline: Monday August 26 2013 5PM GMT. (Now Closed)
 * Interviews Scheduled: First Week of September. (Interviews Scheduled for Next Week)
 * Selection Announcement: Monday, September 09th 2013.
 * Start Date: Monday, September 16th 2013.
 * Internship End Date: Monday, January 13th 2014.


 * Projects at Conferences
 * The two conferences left to plan for this year are AppSec LATAM, and AppSec USA.
 * I have reached out to two project leaders in the Latin America region, and asked them if they would speak at the conference.
 * Both leaders agreed to give a talk at the conference.
 * I have been helping them with their travel, accommodation, and conference logistics planning.
 * Thank you to Michael Hidalgo and Rafael Gil Larios for representing OWASP Projects at AppSec LATAM.
 * AppSec USA planning for projects is going very well.
 * I only have one project leader that hasn't booked his travel yet, and only one project leader that hasn't confirmed his talk time slot.
 * I hope to have this completed by next week.


 * Daily Project based queries and requests
 * This has not changed much since I began the post: questions are very similar in nature.
 * Global AppSec questions.
 * Funding queries.
 * Travel availability.
 * Project based administrative help.
 * Project status information.
 * Several project donation questions.
 * Marketing questions.
 * Grant funding questions.
 * OWASP social media updates.
 * What's happening with projects, questions.

Project Funding Updates

 * OWASP OWTF Project: Brucon 5x5 Award
 * 1) Amount: €5,000.00 (Approx. $6,670.00)
 * 2) Status: Awarded. Congratulations, Abraham Aranguren and all involved in the project, for your award.


 * OWASP OWTF Grant Proposal
 * 1) Amount: $55,800 USD
 * 2) Status: This proposal is complete, and has been submitted.


 * OWASP AppSensor Grant Proposal
 * 1) Amount: ￼$15,000 USD
 * 2) Status: This proposal is complete, and has been submitted.


 * OWASP OpenSAMM Grant Proposal
 * 1) Amount: $112,000 USD
 * 2) Status: This proposal is complete, and has been submitted.


 * OWASP Guidebooks Proposal
 * 1) Amount: $25,000 USD
 * 2) Status: Awarded. The first payment has been allocated to our project budgets. The second invoice has now been sent to Georgia Tech for payment.
 * 3) OWASP Development Guide Plan
 * 4) OWASP Testing Guide Plan
 * 5) OWASP Code Review Guide Plan


 * OWASP ESAPI Grant Proposal
 * 1) Amount: $25,000 USD
 * 2) Status: The ESAPI proposal is still being reviewed.


 * OWASP ModSecurity CRS Proposal
 * 1) Amount: $30,000 USD
 * 2) Status: The ModSecurity proposal is still being reviewed.


 * Google Grants Proposal
 * 1) Amount: $120,000 USD in Adwords Funds
 * 2) Status: Awarded.
 * 3) Note: There is no link to show the proposal for this grant. There was a form that was submitted to Google, and we did not receive a record of this form.


 * European Commission Grant Proposal
 * 1) Amount: €250,000
 * 2) Status: Denied.


 * Google Summer of Code
 * 1) Amount: $5,500
 * 2) Status: Awarded


 * Projects breakdown:
 * 4 ZAP Projects: $2,000
 * 4 OWTF Projects: $2,000
 * 1 PHP Security Project: $500
 * 1 Hackademics Project: $500
 * 1 Modsecurity Project: $500
 * Note: Big thank you to Fabio Cerullo for coordinating and managing this award.


 * Total Funds Awarded: $157,170 USD for 2013.