Category:OWASP Project

An OWASP project is a collection of related tasks that have a defined roadmap and team members. OWASP project leaders are responsible for defining the vision, roadmap, and tasks for the project. The project leader also promotes the project and builds the team.

Proposing a new project
To propose a new project, please send an email to owasp@owasp.org. Each project should have a roadmap page that details the current set of tasks and rough schedule. The page should be named "OWASP XXX Project Roadmap"

Project descriptions

 * OWASP AJAX Security Project - investigating the security of AJAX enabled applications
 * OWASP Application Security Assessment Standards Project - establish a set of standards defining baseline approaches to conducting differing types/levels of application security assessment
 * OWASP AppSec FAQ Project - an FAQ covering many application security topics
 * OWASP CAL9000 Project - a JavaScript based web application security testing suite
 * OWASP CLASP Project - a project focused on defining process elements that reinforce application security
 * OWASP Code Review Project - a new project to capture best practices for reviewing code
 * OWASP Guide Project - a massive document covering all aspects of web application and web service security
 * OWASP Legal Project - a project focused on contracting for secure software
 * OWASP Logging Project - a project to define best practices for logging and log management
 * OWASP Metrics Project - a project to define workable application security metrics
 * OWASP .NET Project - a project focused on helping .NET developers build secure applications
 * OWASP PHP Project - a project focused on helping PHP developers build secure applications
 * OWASP Java Project - a project focused on helping Java and J2EE developers build secure applications
 * OWASP Risk Management Project - a new project focused on processes for managing application security risk
 * OWASP Testing Project - a project focused on application security testing procedures and checklists
 * OWASP Top Ten Project - an awareness document that describes the top ten web application security vulnerabilities
 * OWASP Validation Project - a project that provides guidance and tools related to validation.
 * OWASP WASS Project - a standards project to develop more concrete criteria for secure applications
 * OWASP WebGoat Project - an online training environment for hands-on learning about application security
 * OWASP WebScarab Project - a tool for performing all types of security testing on web applications and web services

OWASP Project Mailing Lists