Category:OWASP Education Project

Welcome to the OWASP Education Project
Web Application Security Education and Awareness is needed throughout the entire organization, each area and level of organizations have specific needs and requirements regarding education. A manager needs other information than a security professional or developer. Novices to the profession require other training than people with several years of experience. This Education project aims to provide in building blocks of web application security information. These modules can be combined together in education tracks targeting different audiences. The first list of modules can be found here.

A Web Application Security Primer
We first start with a small project to create a slide deck of WebAppSec intro topics for newbie's. This can be used to bring OWASP chapter visitors up to speed on the topic. Next to the slide deck we will create some sort of teacher manual with narrative text and maybe complement this with a WebEx (or other) recording. After the material is created we will organize a ‘teach the teacher’ session to enable others to use this. What should be part of this intro? TOC proposal: We already have a large part of the above material; it’s just a matter of restructuring and recompiling some stuff to a Newbie introduction track of about 4 hours. Once we get this going, it can provide the base for more advanced tracks.
 * Why WebAppSec & History
 * OWASP Introduction
 * Current Trends
 * OWASP Top 10: Introduction & Remedies
 * Embed within Complete Approach (People, Processes & Tools)
 * Good AppSec Resources (not limited to OWASP)

Goals & Roadmap
Currently the project goals are to create Educational Tracks: Further breakdown of tasks and future developments are listed in the road map.
 * A Web Application Security Primer Track for beginners (4 hours)
 * What developers should know on Web Application Security Track for developers (4 hours)
 * Create a consolidation page of OWASP presentations performed in the past with the possibility to add comments

Project Guiding Principles
This project aims to provide in building blocks of web application security knowledge that can easily be integrated in awareness sessions or presentations on this topic. The building blocks provided by this project can then be bundled together in eduction tracks. An important guideline is therefore that the material produced is modular.

Resources and links
This project is not standalone. There is an awfull lot of information that can be found throughout this site and from other resources on the Internet. This project will draw pieces of information from: One of the modules to create will be a Resources module, not limited to OWASP.
 * The Video's
 * The presentations, currently being inventorized in the consolidation page of OWASP presentations¨
 * WebGoat

Feedback and Participation:
We hope you find the OWASP Education Project useful. Please contribute to the Project by volunteering for one of the Tasks, sending your comments, questions, and suggestions to the mailing list.

Project Contributors
If you contribute to this Project, please add your name here. Project Lead:
 * Sebastien Deleersnyder

Contributors:


 * Mike de Libero
 * Bunyamin Demir
 * Philippe Bogaerts
 * Tom Brennan
 * Martin Knobloch
 * you? ...