Difference between revisions of "Funds available for OWASP Projects"

From OWASP
Jump to: navigation, search
(New page: This page contains details about the funds available to OWASP projects. This sponsorship model is different from the one used in [OWASP Autumn Of Code 2006|AoC 06] and [OWASP Spring Of Co...)
 
Line 1: Line 1:
This page contains details about the funds available to OWASP projects.
+
This page contains details about funds available to OWASP projects.
 
+
This sponsorship model is different from the one used in [OWASP Autumn Of Code 2006|AoC 06] and [OWASP Spring Of Code 2007 - OWASP|SpoC 007] since these are cases where specific money has been allocated to OWASP projects (for example by new OWASP members or by companies/organizations with specific requirements/projects)
+
  
 +
The sponsorship model is different from the one used in [[OWASP Autumn Of Code 2006|AoC 06]] and [[OWASP Spring Of Code 2007 - OWASP|SpoC 007]] since these are cases where specific money (throughout out the year) has been allocated to OWASP projects (for example by new OWASP members or by companies/organizations with specific requirements/projects)
  
 
== ORG - OWASP Site Generator (5k) ==
 
== ORG - OWASP Site Generator (5k) ==
  
'''Project description:''' Continue development of OSG, write new vulnerabilities, work on new dynamic engine, document findings
+
* '''Project description:''': Continue development of [[OWASP SiteGenerator|Site Generator]], write new vulnerabilities, work on new dynamic engine, document findings
'''Funds available:''' 5,000 USD
+
* '''Funds available:''': 5,000 USD
'''Sponsor''': Spy Dynamics, Cenzic
+
* '''Sponsor''': Spy Dynamics, Cenzic
  
  
 
== OWASP Corporate Application Security Rating Guide (3k) ==
 
== OWASP Corporate Application Security Rating Guide (3k) ==
  
'''Project description:''': As per https://www.owasp.org/index.php/OWASP_Corporate_Application_Security_Rating_Guide, finalize criteria, perform a reearch to selected companies and publish a report with the results
+
* '''Project description:''': As per https://www.owasp.org/index.php/OWASP_Corporate_Application_Security_Rating_Guide, finalize criteria, perform a research to selected companies and publish a report with the results
'''Funds available:''': 3,000 USD  
+
* '''Funds available:''': 3,000 USD  
'''Sponsor''': Cenzic
+
* '''Sponsor''': Cenzic
  
  
 
== Questions for SANS's SSI (5k) ==
 
== Questions for SANS's SSI (5k) ==
  
'''Project description:''': Write questions for JAVA SANS's Software Security Institute certification exams(http://www.sans-ssi.org/). The candidate will need to write the questions and answers and must be a very knowledgeable and respected member of the Java security institute. For obvious reasons only 10% to 20% of the questions created will be disclosed to the OWASP community, with the remaining used in the certification's exams
+
* '''Project description:''': Write questions for JAVA SANS's Software Security Institute certification exams(http://www.sans-ssi.org/). The candidate will need to write the questions and answers and must be a very knowledgeable and respected member of the Java security institute. For obvious reasons only 10% to 20% of the questions created will be disclosed to the OWASP community, with the remaining used in the certification's exams.
'''Funds available:''': 5,000 USD
+
* '''Funds available:''': 5,000 USD
'''Sponsor''': SANS
+
* '''Sponsor''': SANS
  
  
 
== Source Code Review OWASP Projects(5k) ==
 
== Source Code Review OWASP Projects(5k) ==
  
'''Project description:''': Use Fortify's source code scanning engine to scan OWASP projects coded in JAVA. The main objective of this project will be to create the workflow required to make this service a mandatory step on the OWASP tool's Software Development Lifecycle.
+
'''Project description:''': Use Fortify's source code scanning engine to scan OWASP projects coded in JAVA. The main objective of this project will be to create the workflow required to make this service a mandatory step on the OWASP Software Development Lifecycle (i.e. the tools developed and published via OWASP projects).
 
'''Funds available:''' 5,000 USD
 
'''Funds available:''' 5,000 USD
 
'''Sponsor''': Fortify
 
'''Sponsor''': Fortify

Revision as of 12:16, 13 May 2007

This page contains details about funds available to OWASP projects.

The sponsorship model is different from the one used in AoC 06 and SpoC 007 since these are cases where specific money (throughout out the year) has been allocated to OWASP projects (for example by new OWASP members or by companies/organizations with specific requirements/projects)

ORG - OWASP Site Generator (5k)

  • Project description:: Continue development of Site Generator, write new vulnerabilities, work on new dynamic engine, document findings
  • Funds available:: 5,000 USD
  • Sponsor: Spy Dynamics, Cenzic


OWASP Corporate Application Security Rating Guide (3k)


Questions for SANS's SSI (5k)

  • Project description:: Write questions for JAVA SANS's Software Security Institute certification exams(http://www.sans-ssi.org/). The candidate will need to write the questions and answers and must be a very knowledgeable and respected member of the Java security institute. For obvious reasons only 10% to 20% of the questions created will be disclosed to the OWASP community, with the remaining used in the certification's exams.
  • Funds available:: 5,000 USD
  • Sponsor: SANS


Source Code Review OWASP Projects(5k)

Project description:: Use Fortify's source code scanning engine to scan OWASP projects coded in JAVA. The main objective of this project will be to create the workflow required to make this service a mandatory step on the OWASP Software Development Lifecycle (i.e. the tools developed and published via OWASP projects). Funds available: 5,000 USD Sponsor: Fortify