AppSecNews Curation

From OWASP
Revision as of 04:47, 19 September 2013 by MichaelCoates (Talk | contribs)

Jump to: navigation, search

Contents

Purpose

Provide information on curation of the OWASP App Sec News RSS

Main OWASP RSS Feed Link

See OWASP App Sec News RSS

Curators

List of RSS news feed curators: To determine who posted a story you can check the individual RSS streams that feed into the OWASP RSS feed

Guidance for Story Inclusion

  1. Relevant - Related to AppSec OR OWASP
  2. No product/company pitches - Not a story touting a product, service, or company
    • In general, even an ad or solicitation at the bottom of an article will eliminate the article from inclusion
  3. Focus on application security
    • Not related to network security or OS security
    • Not related to malware unless AppSec specific
  4. Quality - Well written (Even introductory material if written interestingly)
    • In some cases quality of writing is not a concern if the material is new and novel
  5. Primary Source - When possible link to the original story, not someone rehashing or relinking
  6. Broad Impact - Avoid items that apply to a very specific technology and situation (e.g. implementing validation with Spring annotations) – unless there’s a broader reason.
  7. Not an exploit / 0-day News Stream for particular sites / companies
    • No exploits of specific apps / site
    • Broad reaching weaknesses in frameworks, libraries, etc are ok to inlcude

Technology

OWASP uses feedblitz to build the RSS stream which splices together multiple inbound RSS streams from vetted curators

Become a Curator

Please contact michael.coates@owasp.org

  • Previous involvement and standing within OWASP is required

Feeds

Submit a feed for consideration

To add a news feed to our list SUBMIT IT for review.

Current Feeds

These feeds have been submitted and posts are reviewed and considered for the AppSecFeed.

What is the primary URL of the blog? What is the direct URL to the RSS feed for the blog? What is the name of the primary author of the blog? What is the twitter name of the primary blog author?
http://www.virtuesecurity.com/blog/ http://www.virtuesecurity.com/blog/feed/ Virtue Security @VirtueSecurity
http://trustedsoftwarealliance.com/ http://trustedsoftwarealliance.com/feed/ Mark Miller @TSWAlliance
http://blog.spiderlabs.com http://blog.spiderlabs.com/modsecurity/ Varies @Spiderlabs
http://blog.cryptographyengineering.com/ http://feeds.feedburner.com/AFewThoughtsOnCryptographicEngineering Matthew Green @matthew_d_green
http://www.keralacyberforce.in http://keralacyberforce.in/feed/rss/ Ajin Abrahamn @ajinabraham
http://armoredcode.com http://feeds.feedburner.com/armoredcode/blog Paolo Perego @thesp0nge
http://blog.sdelements.com http://blog.sdelements.com/feed/ SD Elements @sdelements
http://labs.securitycompass.com feed://labs.securitycompass.com/feed/ Security Compass @securitycompass
http://deadliestwebattacks.com/ http://deadliestwebattacks.com/feed/ Mike Shema
http://www.webadminblog.com http://www.webadminblog.com/index.php/feed/ Josh Sokol @joshsokol
http://michael-coates.blogspot.com/ http://michael-coates.blogspot.com/feeds/posts/default?alt=rss Michael Coates @_mwc
http://www.troyhunt.com/ http://www.troyhunt.com/feeds/posts/default Troy Hunt @troyhunt