OWASP Faux Bank Project

=Main=





{| style="padding: 0;margin:0;margin-top:10px;text-align:left;" |-
 * valign="top" style="border-right: 1px dotted gray;padding-right:25px;" |

OWASP Faux Bank Project
OWASP Faux Bank is...

Description
Faux bank has all 10 of the top vulnerabilities implemented, as well as fixes for these vulnerabilities. The idea is that developers can see a real-world system with vulnerabilities, so that they can see what to look for and how to write secure code

Licensing
OWASP Faux Bank is free to use. It is licensed under the Apache 2.0 license, so you can copy, distribute and transmit the work, and you can adapt it, and use it commercially, but all provided that you attribute the work and if you alter, transform, or build upon this work, you may distribute the resulting work only under the same or similar license to this one.


 * valign="top" style="padding-left:25px;width:200px;border-right: 1px dotted gray;padding-right:25px;" |

What is Faux Bank?
OWASP Faux Bank provides:


 * 3 of a website versions written in the 3 different languages (asp, php, c#), including the database sql file, so that they can be setup and run by anyone.

Project Leader
[mailto:davie.elliott@owaps.org Davie Elliott]

Ohloh

 * valign="top" style="padding-left:25px;width:200px;" |

Email List
Sign Up!

Classifications

 * }

=FAQs=


 * Q1
 * A1


 * Q2
 * A2

= Acknowledgements =

Volunteers
Faux Bank is developed by a worldwide team of volunteers. The primary contributors to date have been:


 * xxx
 * xxx

Others

 * xxx
 * xxx

= Road Map and Getting Involved = As of June, the priorities are:
 * The classic asp version currently has 5 of 10 of the 10 vulnerabilities, I anticipate this version will be completed by July 30th. The php version should take more than a few weeks. The .net version will be tricker, but that should be completed by October/November - assuming I can still maintain my current hours on the project.

Involvement in the development and promotion of Faux Bank is actively encouraged! You do not have to be a security expert in order to contribute. Some of the ways you can help:
 * xxx
 * xxx

=Project About=