Difference between revisions of "AppSecNews Curation"

Jump to: navigation, search
(Current Feeds)
m (Current Feeds)
Line 45: Line 45:
{| {{table}}
{| {{table}}
| align="center" style="background:#f0f0f0;"|'''What is the primary URL of the blog?'''
| align="center" style="background:#f0f0f0;"|'''Primary URL of the blog'''
| align="center" style="background:#f0f0f0;"|'''What is the direct URL to the RSS feed for the blog?'''
| align="center" style="background:#f0f0f0;"|'''Direct URL to the RSS feed for the blog?'''
| align="center" style="background:#f0f0f0;"|'''What is the name of the primary author of the blog?'''
| align="center" style="background:#f0f0f0;"|'''Name of the primary author of the blog?'''
| align="center" style="background:#f0f0f0;"|'''What is the twitter name of the primary blog author?'''
| align="center" style="background:#f0f0f0;"|'''Twitter name of the primary blog author?'''
| http://www.virtuesecurity.com/blog/||http://www.virtuesecurity.com/blog/feed/||Virtue Security||@VirtueSecurity
| http://www.virtuesecurity.com/blog/||http://www.virtuesecurity.com/blog/feed/||Virtue Security||@VirtueSecurity

Latest revision as of 13:04, 24 September 2013


Provide information on curation of the OWASP App Sec News RSS

Main OWASP RSS Feed Link

See OWASP App Sec News RSS


List of RSS news feed curators: To determine who posted a story you can check the individual RSS streams that feed into the OWASP RSS feed

Guidance for Story Inclusion

  1. Relevant - Related to AppSec OR OWASP
  2. No product/company pitches - Not a story touting a product, service, or company
    • In general, even an ad or solicitation at the bottom of an article will eliminate the article from inclusion
  3. Focus on application security
    • Not related to network security or OS security
    • Not related to malware unless AppSec specific
  4. Quality - Well written (Even introductory material if written interestingly)
    • In some cases quality of writing is not a concern if the material is new and novel
  5. Primary Source - When possible link to the original story, not someone rehashing or relinking
  6. Broad Impact - Avoid items that apply to a very specific technology and situation (e.g. implementing validation with Spring annotations) – unless there’s a broader reason.
  7. Not an exploit / 0-day News Stream for particular sites / companies
    • No exploits of specific apps / site
    • Broad reaching weaknesses in frameworks, libraries, etc are ok to inlcude


OWASP uses feedblitz to build the RSS stream which splices together multiple inbound RSS streams from vetted curators

Become a Curator

Please contact michael.coates@owasp.org

  • Previous involvement and standing within OWASP is required


Submit a feed for consideration

To add a news feed to our list SUBMIT IT for review.

Current Feeds

These feeds have been submitted and posts are reviewed and considered for the AppSecFeed.

Primary URL of the blog Direct URL to the RSS feed for the blog? Name of the primary author of the blog? Twitter name of the primary blog author?
http://www.virtuesecurity.com/blog/ http://www.virtuesecurity.com/blog/feed/ Virtue Security @VirtueSecurity
http://trustedsoftwarealliance.com/ http://trustedsoftwarealliance.com/feed/ Mark Miller @TSWAlliance
http://blog.spiderlabs.com http://blog.spiderlabs.com/modsecurity/ Varies @Spiderlabs
http://blog.cryptographyengineering.com/ http://feeds.feedburner.com/AFewThoughtsOnCryptographicEngineering Matthew Green @matthew_d_green
http://www.keralacyberforce.in http://keralacyberforce.in/feed/rss/ Ajin Abrahamn @ajinabraham
http://armoredcode.com http://feeds.feedburner.com/armoredcode/blog Paolo Perego @thesp0nge
http://blog.sdelements.com http://blog.sdelements.com/feed/ SD Elements @sdelements
http://labs.securitycompass.com feed://labs.securitycompass.com/feed/ Security Compass @securitycompass
http://deadliestwebattacks.com/ http://deadliestwebattacks.com/feed/ Mike Shema
http://www.webadminblog.com http://www.webadminblog.com/index.php/feed/ Josh Sokol @joshsokol
http://michael-coates.blogspot.com/ http://michael-coates.blogspot.com/feeds/posts/default?alt=rss Michael Coates @_mwc
http://www.troyhunt.com/ http://www.troyhunt.com/feeds/posts/default Troy Hunt @troyhunt
https://www.clerkendweller.com/ https://www.clerkendweller.com/rss.php?mode=full Colin Watson @Clerkendweller
http://blog.diniscruz.com/ http://blog.diniscruz.com/feeds/posts/default Dinis Cruz @DinisCruz