LAB Projects Code Analysis Report

From OWASP
Jump to: navigation, search

Johanna is currently testing the LAB projects who are potential candidates for flagship status. We are waiting to hear back from the project leaders to ensure the reports contain the most updated information before publishing the results. Once those results have been finalized, they will be posted to the wiki page.

For the time being, the only projects in review are candidates for flagship status.

LAB Project Status Reports 2014

Project Name Project Status Report Overall Status Recommendation
OWASP AntiSamy Status Report Off Track
OWASP ModSecurity CRS Status Report On Track Project will keep LAB status under supervision. Must update wiki info and we will reevaluate in October, 2014.
OWASP Broken Web Applications Project Status Report On Track Project will keep LAB status under supervision. Must update wiki info and we will reevaluate in October, 2014.
OWASP CSRFTester Project Status Reprort Off Track This project has been inactivated due to lack of activity.
OWASP EnDe Project Status Report On Track Project will keep LAB status. Next evaluation will be January, 2015.
OWASP Hackademics Status Report On Track Project must update key info on wiki to become candidate flagship. Next evaluation will be October, 2014.
OWASP Mantra Security Framework Status Report On Track The project will remain in LABs. Next evaluation will be October, 2014.
OWASP O2 Project Status Report On Track Project keeps its LAB status. Next evaluation will be January, 2015.
OWASP CRSFGuard Project Status Report On Track Project is considered a flagship candidate. Functional testing for flagship candidates will be September, 2014.
OWASP WebGoat Status Report At Risk Project will hold LAB status while project leaders are actively rewriting application. Reevaluation will be October, 2014.
OWASP Web Testing Environment Status Report On Track Strong flagship candidate. Functional testing evaluation will be September, 2014.
OWASP Wapiti Project Status Report On Track Based on the wiki page, it looks like this project has been abandoned, and has been marked inactive.
OWASP OWTF Status Report On Track Project must update key information on the wiki to be considered a flagship candidate. Next evaluation is October, 2014.
OWASP ZAP Status Report On Track Strong flagship candidate. Functional testing evaluation will be September, 2014.
OWASP Vicnum Project Status Report High Risk The project will remain in LABs. Next evaluation will be October, 2014.

Reports created by Mario Kourtesis during testing: https://drive.google.com/folderview?id=0B5CqvQE_eza9ekQ5RXFSYk9YVEk&usp=docs_home&usp=docs_home&urp=https://docs.google.com/a/owasp.org/folderview?id%3D&pli=1&ddrp=1

Latest reviews 2015

Activity level monitoring: (Last updated source code repositories including new projects) https://www.openhub.net/orgs/OWASP

https://magic.piktochart.com/output/6323285-project-reviews

Some latest summary review results through the Dashboard: https://docs.google.com/a/owasp.org/spreadsheets/d/15NzgmnxKNtexRDs70rBUi1NHhjQiviBdYUa_kDvd3i4/edit?usp=sharing

Classification of projects: https://docs.google.com/a/owasp.org/spreadsheets/d/1QhGdHxd8c6NqGGhk90QpByZjR-qDOjZ3_arhXRtvf4c/edit?usp=sharing

Thanks to Timo Goosen and collaboration of the Review team for its input on the Reviews 2015.