This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit

Category:OWASP Education Project

Revision as of 12:57, 14 March 2007 by Mccorga (talk | contribs)

Jump to: navigation, search

Welcome to the OWASP Education Project

Web Application Security Education and Awareness is needed throughout the entire organization, each area and level of organizations have specific needs and requirements regarding education. A manager needs other information than a security professional or developer. Novices to the profession require other training than people with several years of experience.
This Education project aims to provide in building blocks of web application security information. These modules can be combined together in education tracks targeting different audiences.

The first list of modules can be found here.

A Web Application Security Primer

We first start with a small project to create a slide deck of WebAppSec intro topics for newbie's. This can be used to bring OWASP chapter visitors up to speed on the topic.
Next to the slide deck we will create some sort of teacher manual with narrative text and maybe complement this with a WebEx (or other) recording.
After the material is created we will organize a ‘teach the teacher’ session to enable others to use this.
What should be part of this intro?
TOC proposal:

  • Why WebAppSec & History
  • OWASP Introduction
  • Current Trends
  • OWASP Top 10: Introduction & Remedies
  • OWASP Top 10 2007: RC 1
  • Embed within Complete Approach (People, Processes & Tools)
  • Good AppSec Resources (not limited to OWASP)

We already have a large part of the above material; it’s just a matter of restructuring and recompiling some stuff to a Newbie introduction track of about 4 hours.
Once we get this going, it can provide the base for more advanced tracks.

Goals & Roadmap

Currently the project goals are to create Educational Tracks:

  • A Web Application Security Primer Track for beginners (4 hours)
  • What developers should know on Web Application Security Track for developers (4 hours)
  • Create a consolidation page of OWASP presentations performed in the past with the possibility to add comments
  • ...

Further breakdown of tasks and future developments are listed in the road map.

Project Guiding Principles

This project aims to provide in building blocks of web application security knowledge that can easily be integrated in awareness sessions or presentations on this topic. The building blocks provided by this project can then be bundled together in eduction tracks.
An important guideline is therefore that the material produced is modular.

Resources and links

This project is not standalone. There is an awfull lot of information that can be found throughout this site and from other resources on the Internet.
This project will draw pieces of information from:

One of the modules to create will be a Resources module, not limited to OWASP.

Feedback and Participation:

We hope you find the OWASP Education Project useful. Please contribute to the Project by volunteering for one of the Tasks, sending your comments, questions, and suggestions to the mailing list.

Project Contributors

If you contribute to this Project, please add your name here.
Project Lead:



This category has only the following subcategory.


Media in category "OWASP Education Project"

This category contains only the following file.