OWASP Incident Response Project

=Main=



{| style="padding: 0;margin:0;margin-top:10px;text-align:left;" |-
 * valign="top" style="border-right: 1px dotted gray;padding-right:25px;" |

OWASP Incident Response Project
The OWASP Incident Response Project is a proactive set of recommendations for firms to use as a best practice for dealing with a hacked web application.

Introduction
You just learned that your company website has been HACKED now what do you do?

Description
This project is a guide of suggested best practices for stand-alone IR of a web application on dedicated hardware that you have 100% access to as well as when the application is part of a cloud service offering. The goal is to provide a best practices checklist that can be used to ensure chain of custody and to assist with investigations of root-cause.

Licensing
The OWASP Incident Response Project is free to use. It is licensed under the http://creativecommons.org/licenses/by-sa/3.0/ Creative Commons Attribution-ShareAlike 3.0 license], so you can copy, distribute and transmit the work, and you can adapt it, and use it commercially, but all provided that you attribute the work and if you alter, transform, or build upon this work, you may distribute the resulting work only under the same or similar license to this one.


 * valign="top" style="padding-left:25px;width:200px;border-right: 1px dotted gray;padding-right:25px;" |

What is the OWASP Incident Response Project?
The OWASP Incident Response Project provides:


 * Helpful checklist of what you
 * Basic Incident Response Training
 * Best practices to lock down the OS and application to be proactive

Presentation
Check Back Soon

Project Leader
Tom Brennan

Related Projects
OWASP Top 10

OWASP Cheat Sheets

OWASP Mod_Security CRS

Web Hacking Incident Database


 * valign="top" style="padding-left:25px;width:200px;" |

Quick Download

 * Check Back Soon

News and Events

 * Next collaboration session on the topic at the NYC OWASP Meeting

In Print
This project WILL be available as a publication when released.

Classifications

 * }

=FAQs=


 * Q1 Will this project help me respond to a computer security breach
 * A1 Yes, we are providing a sample IR plan and related reference materials.


 * Q2 How can I add to this important project?
 * A2 send email to tomb(@)owasp.org

= Acknowledgements =

Volunteers
Incident Response Project is developed by a worldwide team of volunteers. The primary contributors to date have been:


 * Tom Brennan
 * Warren Kruse
 * Chris Pogue
 * Ryan Barnett

Want to help? Get in touch with us

Others

 * OWASP NYC Metro Chapter

= Road Map and Getting Involved = As of 19-March-2015, the priorities are:
 * Collect materials in the public domain and list them as reference points.
 * Review existing materials and extract the Top 10 most important things for common common environments

Involvement in the development and promotion of OWASP Incident Response Project is actively encouraged! You do not have to be a security expert in order to contribute. Some of the ways you can help:
 * Proof Reading
 * Graphic Design
 * Conduct Industry Survey

=Project About=