Difference between revisions of "OWASP Autumn of Code 2006 - Project Completion"

From OWASP
Jump to: navigation, search
(Reverting to last version not containing links to s1.shard.jp)
 
(19 intermediate revisions by 3 users not shown)
Line 1: Line 1:
This page documents the completiong of the OWASP AoC 2006 projects  
+
This page documents the completion of the [[OWASP Autumn Of Code 2006 ]] projects (see the 9 sponsored projects in [[OWASP Autumn of Code 2006 - Selection]])
  
== Summary table (Aggregated Results) ==
+
== Project Completion Report ==
 
{| class="wikitable" style="text-align:center"
 
{| class="wikitable" style="text-align:center"
 
|+ OWASP Autumn of Code 2006 Results
 
|+ OWASP Autumn of Code 2006 Results
Line 12: Line 12:
 
! height="18" bgcolor="#FFFFFF" align="LEFT" valign="MIDDLE" | AoC 13 Rogan
 
! height="18" bgcolor="#FFFFFF" align="LEFT" valign="MIDDLE" | AoC 13 Rogan
 
! bgcolor="#FFFFFF" align="LEFT" valign="MIDDLE" | ([[OWASP_Autumn_of_Code_2006_-_Projects:_WebScarab_NG|WebScarab NG]])
 
! bgcolor="#FFFFFF" align="LEFT" valign="MIDDLE" | ([[OWASP_Autumn_of_Code_2006_-_Projects:_WebScarab_NG|WebScarab NG]])
| align="CENTER" |  
+
| align="CENTER" | A working beta version is now available for WebScarad which implements a complete new user interface and is much more usable and practical (although still doesn't have all features from the current version)
| align="CENTER" |  
+
! align="CENTER" | Yes
| align="CENTER" |  
+
! align="CENTER" | Yes
 
|-
 
|-
 
! height="18" bgcolor="#FFFFFF" align="LEFT" valign="MIDDLE" | AoC 04 Joshua
 
! height="18" bgcolor="#FFFFFF" align="LEFT" valign="MIDDLE" | AoC 04 Joshua
 
! bgcolor="#FFFFFF" align="LEFT" valign="MIDDLE" | ([[OWASP_Autumn_of_Code_2006_-_Projects:_Live_CD|Live CD]])
 
! bgcolor="#FFFFFF" align="LEFT" valign="MIDDLE" | ([[OWASP_Autumn_of_Code_2006_-_Projects:_Live_CD|Live CD]])
| align="CENTER" | Josh's Live CD is shaping up nicely and is 90% complete. As with all software it needs a little tweeking. This is a valuable addition to the OWASP collection.
+
| align="CENTER" | The Live CD is a valuable addition to the OWASP collection, since it allows the easy access, use and testing of several OWASP tools and documents
| align="CENTER" | 90%
+
! align="CENTER" | Yes
| align="CENTER" | No
+
! align="CENTER" | Yes
 
|-
 
|-
 
! height="18" bgcolor="#FFFFFF" align="LEFT" valign="MIDDLE" | AoC 17 Chris
 
! height="18" bgcolor="#FFFFFF" align="LEFT" valign="MIDDLE" | AoC 17 Chris
 
! bgcolor="#FFFFFF" align="LEFT" valign="MIDDLE" | ([[OWASP_Autumn_of_Code_2006_-_Projects:_CAL9000|CAL9000]])
 
! bgcolor="#FFFFFF" align="LEFT" valign="MIDDLE" | ([[OWASP_Autumn_of_Code_2006_-_Projects:_CAL9000|CAL9000]])
| align="CENTER" |  
+
| align="CENTER" | A new version of CAP 9000 is now released containing several new features and with extended support for more browsers
| align="CENTER" |  
+
! align="CENTER" | Yes
| align="CENTER" |  
+
! align="CENTER" | Yes
|-
+
|-http://www.owasp.org/index.php?title=OWASP_Autumn_of_Code_2006_-_Project_Completion&action=edit&section=1
 
! height="18" bgcolor="#FFFFFF" align="LEFT" valign="MIDDLE" | AoC 09 Mike
 
! height="18" bgcolor="#FFFFFF" align="LEFT" valign="MIDDLE" | AoC 09 Mike
 
! bgcolor="#FFFFFF" align="LEFT" valign="MIDDLE" | ([[OWASP_Autumn_of_Code_2006_-_Projects:_SiteGenerator_and_ORG|SiteGenerator and ORG]])
 
! bgcolor="#FFFFFF" align="LEFT" valign="MIDDLE" | ([[OWASP_Autumn_of_Code_2006_-_Projects:_SiteGenerator_and_ORG|SiteGenerator and ORG]])
| align="CENTER" | Mike's contributions to both [[OWASP Report Generator]](ORG) and [[OWASP Site Generator]] (OSG) where very valuable. In ORG Mike resolved tons of small/medium bugs and added several new major features (for example update to .NET 2.0). In OSG, Mike re-implemented the HttpModule, fixed several nasty bugs with the use of Altova's Authentic component, added new OSG vulnerabilities and cleanup the GUI. He also wrote documentation for those projects.
+
| align="CENTER" | Both [[OWASP Report Generator]](ORG) and [[OWASP Site Generator]] (OSG) receive large number of enhancements. In ORG tons of small/medium bugs were fixed and several new major features where added (in addition to an update to .NET 2.0). In OSG, HttpModule was re-implemented to use TCP, several nasty bugs were fixed and new OSG vulnerabilities where added.
| align="CENTER" | Yes
+
! align="CENTER" | Yes
| align="CENTER" | Yes
+
! align="CENTER" | Yes
 
|-
 
|-
 
! height="18" bgcolor="#FFFFFF" align="LEFT" valign="MIDDLE" | AoC 21 Simon
 
! height="18" bgcolor="#FFFFFF" align="LEFT" valign="MIDDLE" | AoC 21 Simon
! bgcolor="#FFFFFF" align="LEFT" valign="MIDDLE" | ([[OWASP_Autumn_of_Code_2006_-_Projects:_Pantera|Pantera]])
+
! bgcolor="#FFFFFF" align="LEFT" valign="MIDDLE" | ([[OWASP_Autumn_of_Code_2006_-_Projects:_Pantera|Pantera]])  
| align="CENTER" | Simon has delived a new version of Pantera on the 50% mark of the AoC project, and is about to release the final version
+
| align="CENTER" | Simon delivered a new version of Pantera which contains several new features and is more optimized
| align="CENTER" | 75%
+
! align="CENTER" | Yes
| align="CENTER" | No
+
! align="CENTER" | Yes
 
|-
 
|-
 
! height="18" bgcolor="#FFFFFF" align="LEFT" valign="MIDDLE" | AoC 24 Sherif
 
! height="18" bgcolor="#FFFFFF" align="LEFT" valign="MIDDLE" | AoC 24 Sherif
 
! bgcolor="#FFFFFF" align="LEFT" valign="MIDDLE" | ([[OWASP_Autumn_of_Code_2006_-_Projects:_Web_Goat|Web Goat]])
 
! bgcolor="#FFFFFF" align="LEFT" valign="MIDDLE" | ([[OWASP_Autumn_of_Code_2006_-_Projects:_Web_Goat|Web Goat]])
| align="CENTER" |  
+
| align="CENTER" | 12 new lessons where added to WebGoat (for example: DOM/XML Injection, JSON Injection, Cross-Site Request Forgery , HTTP Splitting, etc..)
| align="CENTER" |  
+
! align="CENTER" | Yes
| align="CENTER" |  
+
! align="CENTER" | Yes
 
|-
 
|-
 
! height="18" bgcolor="#FFFFFF" align="LEFT" valign="MIDDLE" | AoC 26 Matteo
 
! height="18" bgcolor="#FFFFFF" align="LEFT" valign="MIDDLE" | AoC 26 Matteo
 
! bgcolor="#FFFFFF" align="LEFT" valign="MIDDLE" | ([[OWASP_Autumn_of_Code_2006_-_Projects:_Testing_Guide|Testing Guide]])
 
! bgcolor="#FFFFFF" align="LEFT" valign="MIDDLE" | ([[OWASP_Autumn_of_Code_2006_-_Projects:_Testing_Guide|Testing Guide]])
| align="CENTER" | Matteo did a nice job in pulling all the artifacts from the previous guides together and also inspired other people to contribute to new sections. This Guide is an important addition to the OWASP catalogue.
+
| align="CENTER" | The previous Guide was greatly enhanced where large portions were re-writen and new material added. This Guide is an important addition to the OWASP catalogue.
| align="CENTER" | Yes
+
! align="CENTER" | Yes
| align="CENTER" | Yes
+
! align="CENTER" | Yes
 
|-
 
|-
 
! height="18" bgcolor="#FFFFFF" align="LEFT" valign="MIDDLE" | AoC 18 Boris
 
! height="18" bgcolor="#FFFFFF" align="LEFT" valign="MIDDLE" | AoC 18 Boris
 
! bgcolor="#FFFFFF" align="LEFT" valign="MIDDLE" | ([[OWASP_Autumn_of_Code_2006_-_Projects:_Owasp_.Net_Tools|Owasp .Net Tools]])
 
! bgcolor="#FFFFFF" align="LEFT" valign="MIDDLE" | ([[OWASP_Autumn_of_Code_2006_-_Projects:_Owasp_.Net_Tools|Owasp .Net Tools]])
| align="CENTER" | Boris has done an impressive job in integrating the OWASP .Net tools SAM'SHE and ANSA in a new client server architecture which contains a 'built from scratch' client application which 'consumes' the results from the .Net tests
+
| align="CENTER" | The OWASP .Net tools SAM'SHE and ANSA are in integrated into a new client server architecture which contains a 'built from scratch' client application which 'consumes' the results from the .Net tests. This new tools (called OWASP Tiger) could be the beginning of a standard vulnerability collector.
| align="CENTER" | 90%
+
! align="CENTER" | Yes
| align="CENTER" | No
+
! align="CENTER" | Yes
 
|-
 
|-
 
! height="18" bgcolor="#FFFFFF" align="LEFT" valign="MIDDLE" | AoC 07 Aaron
 
! height="18" bgcolor="#FFFFFF" align="LEFT" valign="MIDDLE" | AoC 07 Aaron
 
! bgcolor="#FFFFFF" align="LEFT" valign="MIDDLE" | ([[OWASP_Autumn_of_Code_2006_-_Projects:_Website_and_Branding|Owasp Website]])
 
! bgcolor="#FFFFFF" align="LEFT" valign="MIDDLE" | ([[OWASP_Autumn_of_Code_2006_-_Projects:_Website_and_Branding|Owasp Website]])
| align="CENTER" |  
+
| align="CENTER" | Multiple sections of OWASP.org website where re-organized (for example the Projects Page), the OWASP newsletter was created and several pages received improvements in their layout
| align="CENTER" |  
+
! align="CENTER" | Yes
| align="CENTER" |  
+
! align="CENTER" | Yes
 
|-}
 
|-}

Latest revision as of 07:50, 3 June 2009

This page documents the completion of the OWASP Autumn Of Code 2006 projects (see the 9 sponsored projects in OWASP Autumn of Code 2006 - Selection)

Project Completion Report

OWASP Autumn of Code 2006 Results
Proposal ID Project Review by Project Leader Delivered on project requirements Authorized for Final Payment
AoC 13 Rogan (WebScarab NG) A working beta version is now available for WebScarad which implements a complete new user interface and is much more usable and practical (although still doesn't have all features from the current version) Yes Yes
AoC 04 Joshua (Live CD) The Live CD is a valuable addition to the OWASP collection, since it allows the easy access, use and testing of several OWASP tools and documents Yes Yes
AoC 17 Chris (CAL9000) A new version of CAP 9000 is now released containing several new features and with extended support for more browsers Yes Yes
AoC 09 Mike (SiteGenerator and ORG) Both OWASP Report Generator(ORG) and OWASP Site Generator (OSG) receive large number of enhancements. In ORG tons of small/medium bugs were fixed and several new major features where added (in addition to an update to .NET 2.0). In OSG, HttpModule was re-implemented to use TCP, several nasty bugs were fixed and new OSG vulnerabilities where added. Yes Yes
AoC 21 Simon (Pantera) Simon delivered a new version of Pantera which contains several new features and is more optimized Yes Yes
AoC 24 Sherif (Web Goat) 12 new lessons where added to WebGoat (for example: DOM/XML Injection, JSON Injection, Cross-Site Request Forgery , HTTP Splitting, etc..) Yes Yes
AoC 26 Matteo (Testing Guide) The previous Guide was greatly enhanced where large portions were re-writen and new material added. This Guide is an important addition to the OWASP catalogue. Yes Yes
AoC 18 Boris (Owasp .Net Tools) The OWASP .Net tools SAM'SHE and ANSA are in integrated into a new client server architecture which contains a 'built from scratch' client application which 'consumes' the results from the .Net tests. This new tools (called OWASP Tiger) could be the beginning of a standard vulnerability collector. Yes Yes
AoC 07 Aaron (Owasp Website) Multiple sections of OWASP.org website where re-organized (for example the Projects Page), the OWASP newsletter was created and several pages received improvements in their layout Yes Yes