Difference between revisions of "AppSecNews Curation"

From OWASP
Jump to: navigation, search
(Created page with "=Purpose= Provide information on curation of the OWASP App Sec News RSS = Main OWASP RSS Feed Link = See [[Application_Security_News | OWASP A...")
 
m (Current Feeds)
 
(7 intermediate revisions by one user not shown)
Line 11: Line 11:
 
* OWASP Blog - multiple authors
 
* OWASP Blog - multiple authors
 
** http://owasp-appsecnews.blogspot.com/feeds/posts/default?alt=rss
 
** http://owasp-appsecnews.blogspot.com/feeds/posts/default?alt=rss
* Michael Coates  
+
* Michael Coates
 
** http://theoldreader.com/profile/4aef4eccdc818aa581976d49.rss
 
** http://theoldreader.com/profile/4aef4eccdc818aa581976d49.rss
 
+
** Added 2013-Sept-09
  
 
=Guidance for Story Inclusion=
 
=Guidance for Story Inclusion=
Line 35: Line 35:
 
=Become a Curator=
 
=Become a Curator=
 
Please contact michael.coates@owasp.org
 
Please contact michael.coates@owasp.org
 
* We'll review your RSS feed for the past 3 months to determine if it is a good fit based on the above criteria
 
 
* Previous involvement and standing within OWASP is required
 
* Previous involvement and standing within OWASP is required
 +
 +
= Feeds =
 +
==Submit a feed for consideration ==
 +
To add a news feed to our list [https://docs.google.com/a/owasp.org/forms/d/1nZ-fexl0uKRkdxnDOy-smJQEYYiIwiK2EGAmMVItWWM/viewform SUBMIT IT] for review.
 +
 +
==Current Feeds==
 +
These feeds have been submitted and posts are reviewed and considered for the AppSecFeed.
 +
 +
{| {{table}}
 +
| align="center" style="background:#f0f0f0;"|'''Primary URL of the blog'''
 +
| align="center" style="background:#f0f0f0;"|'''Direct URL to the RSS feed for the blog?'''
 +
| align="center" style="background:#f0f0f0;"|'''Name of the primary author of the blog?'''
 +
| align="center" style="background:#f0f0f0;"|'''Twitter name of the primary blog author?'''
 +
|-
 +
| http://www.virtuesecurity.com/blog/||http://www.virtuesecurity.com/blog/feed/||Virtue Security||@VirtueSecurity
 +
|-
 +
| http://trustedsoftwarealliance.com/||http://trustedsoftwarealliance.com/feed/||Mark Miller||@TSWAlliance
 +
|-
 +
| http://blog.spiderlabs.com||http://blog.spiderlabs.com/modsecurity/||Varies||@Spiderlabs
 +
|-
 +
| http://blog.cryptographyengineering.com/||http://feeds.feedburner.com/AFewThoughtsOnCryptographicEngineering||Matthew Green||@matthew_d_green
 +
|-
 +
| http://www.keralacyberforce.in||http://keralacyberforce.in/feed/rss/||Ajin Abrahamn||@ajinabraham
 +
|-
 +
| http://armoredcode.com||http://feeds.feedburner.com/armoredcode/blog||Paolo Perego||@thesp0nge
 +
|-
 +
| http://blog.sdelements.com||http://blog.sdelements.com/feed/||SD Elements||@sdelements
 +
|-
 +
| http://labs.securitycompass.com||feed://labs.securitycompass.com/feed/||Security Compass||@securitycompass
 +
|-
 +
| http://deadliestwebattacks.com/||http://deadliestwebattacks.com/feed/||Mike Shema||
 +
|-
 +
| http://www.webadminblog.com||http://www.webadminblog.com/index.php/feed/||Josh Sokol||@joshsokol
 +
|-
 +
| http://michael-coates.blogspot.com/ || http://michael-coates.blogspot.com/feeds/posts/default?alt=rss || Michael Coates || @_mwc
 +
|-
 +
| http://www.troyhunt.com/ || http://www.troyhunt.com/feeds/posts/default || Troy Hunt || @troyhunt
 +
|-
 +
| https://www.clerkendweller.com/ || https://www.clerkendweller.com/rss.php?mode=full || Colin Watson || @Clerkendweller
 +
|-
 +
| http://blog.diniscruz.com/ || http://blog.diniscruz.com/feeds/posts/default || Dinis Cruz || @DinisCruz
 +
|}

Latest revision as of 13:04, 24 September 2013

Contents

Purpose

Provide information on curation of the OWASP App Sec News RSS

Main OWASP RSS Feed Link

See OWASP App Sec News RSS

Curators

List of RSS news feed curators: To determine who posted a story you can check the individual RSS streams that feed into the OWASP RSS feed

Guidance for Story Inclusion

  1. Relevant - Related to AppSec OR OWASP
  2. No product/company pitches - Not a story touting a product, service, or company
    • In general, even an ad or solicitation at the bottom of an article will eliminate the article from inclusion
  3. Focus on application security
    • Not related to network security or OS security
    • Not related to malware unless AppSec specific
  4. Quality - Well written (Even introductory material if written interestingly)
    • In some cases quality of writing is not a concern if the material is new and novel
  5. Primary Source - When possible link to the original story, not someone rehashing or relinking
  6. Broad Impact - Avoid items that apply to a very specific technology and situation (e.g. implementing validation with Spring annotations) – unless there’s a broader reason.
  7. Not an exploit / 0-day News Stream for particular sites / companies
    • No exploits of specific apps / site
    • Broad reaching weaknesses in frameworks, libraries, etc are ok to inlcude

Technology

OWASP uses feedblitz to build the RSS stream which splices together multiple inbound RSS streams from vetted curators

Become a Curator

Please contact michael.coates@owasp.org

  • Previous involvement and standing within OWASP is required

Feeds

Submit a feed for consideration

To add a news feed to our list SUBMIT IT for review.

Current Feeds

These feeds have been submitted and posts are reviewed and considered for the AppSecFeed.

Primary URL of the blog Direct URL to the RSS feed for the blog? Name of the primary author of the blog? Twitter name of the primary blog author?
http://www.virtuesecurity.com/blog/ http://www.virtuesecurity.com/blog/feed/ Virtue Security @VirtueSecurity
http://trustedsoftwarealliance.com/ http://trustedsoftwarealliance.com/feed/ Mark Miller @TSWAlliance
http://blog.spiderlabs.com http://blog.spiderlabs.com/modsecurity/ Varies @Spiderlabs
http://blog.cryptographyengineering.com/ http://feeds.feedburner.com/AFewThoughtsOnCryptographicEngineering Matthew Green @matthew_d_green
http://www.keralacyberforce.in http://keralacyberforce.in/feed/rss/ Ajin Abrahamn @ajinabraham
http://armoredcode.com http://feeds.feedburner.com/armoredcode/blog Paolo Perego @thesp0nge
http://blog.sdelements.com http://blog.sdelements.com/feed/ SD Elements @sdelements
http://labs.securitycompass.com feed://labs.securitycompass.com/feed/ Security Compass @securitycompass
http://deadliestwebattacks.com/ http://deadliestwebattacks.com/feed/ Mike Shema
http://www.webadminblog.com http://www.webadminblog.com/index.php/feed/ Josh Sokol @joshsokol
http://michael-coates.blogspot.com/ http://michael-coates.blogspot.com/feeds/posts/default?alt=rss Michael Coates @_mwc
http://www.troyhunt.com/ http://www.troyhunt.com/feeds/posts/default Troy Hunt @troyhunt
https://www.clerkendweller.com/ https://www.clerkendweller.com/rss.php?mode=full Colin Watson @Clerkendweller
http://blog.diniscruz.com/ http://blog.diniscruz.com/feeds/posts/default Dinis Cruz @DinisCruz