OWASP News

This page is for people to post OWASP related news items, like new releases, updates, or announcements. This page is monitored, and particularly important stories will be copied to the front page.

Please post new items at the top of the list using the following format:


 * Headline for announcement
 * Details...

Stories

 * Jun 20 - Professional pen testers rely on OWASP
 * [[Image:pentestbook.jpg|100px|right]] This new book is organized around the OWASP Top Ten, and goes into detail about WebScarab and WebGoat. "OWASP's WebScarab is rock solid and a must-have for any serious Web app pen tester"


 * Jun 8 - New OWASP CAL9000 Project Unveiled
 * Chris Loomis has created an interesting JavaScript driven web application testing tool that allows manual requests, RSnake powered XSS verification, and many other utilities.


 * Jun 6 - OWASP Java Project
 * Stephen de Vries and Rohyt Belani have taken on the OWASP Java project and will be building the project roadmap shortly.


 * Jun 3 - How to test session identifier strength with WebScarab
 * New article shows you how to use one of the advanced features of WebScarab!


 * Jun 1 - OWASP selected in top 100 security websites
 * OWASP has been selected as one of the top 100 security websites. Thanks to everyone who's helped us along the way!


 * May 26 - OWASP WebGoat 4.0 released
 * Lots of new features, including multi-stage hands-on coding labs for access control, SQL injection, and cross site scripting.


 * May 25 - OWASP CLASP project launched
 * Thanks to Secure Software for donating the CLASP materials to bootstrap our secure lifecycle efforts.


 * May 23 - OWASP 2.0 released
 * OWASP is moving to the MediaWiki platform to encourage greater collaboration. We're in the process of moving over all the old content. You can still view the previous website.