Difference between revisions of "OWASP Autumn of Code 2006 - Project Completion"

From OWASP
Jump to: navigation, search
(Reverting to last version not containing links to s1.shard.jp)
 
(13 intermediate revisions by 3 users not shown)
Line 1: Line 1:
This page documents the completiong of the OWASP AoC 2006 projects  
+
This page documents the completion of the [[OWASP Autumn Of Code 2006 ]] projects (see the 9 sponsored projects in [[OWASP Autumn of Code 2006 - Selection]])
  
 
== Project Completion Report ==
 
== Project Completion Report ==
Line 12: Line 12:
 
! height="18" bgcolor="#FFFFFF" align="LEFT" valign="MIDDLE" | AoC 13 Rogan
 
! height="18" bgcolor="#FFFFFF" align="LEFT" valign="MIDDLE" | AoC 13 Rogan
 
! bgcolor="#FFFFFF" align="LEFT" valign="MIDDLE" | ([[OWASP_Autumn_of_Code_2006_-_Projects:_WebScarab_NG|WebScarab NG]])
 
! bgcolor="#FFFFFF" align="LEFT" valign="MIDDLE" | ([[OWASP_Autumn_of_Code_2006_-_Projects:_WebScarab_NG|WebScarab NG]])
| align="CENTER" | {add comment}
+
| align="CENTER" | A working beta version is now available for WebScarad which implements a complete new user interface and is much more usable and practical (although still doesn't have all features from the current version)
 
! align="CENTER" | Yes
 
! align="CENTER" | Yes
 
! align="CENTER" | Yes
 
! align="CENTER" | Yes
Line 18: Line 18:
 
! height="18" bgcolor="#FFFFFF" align="LEFT" valign="MIDDLE" | AoC 04 Joshua
 
! height="18" bgcolor="#FFFFFF" align="LEFT" valign="MIDDLE" | AoC 04 Joshua
 
! bgcolor="#FFFFFF" align="LEFT" valign="MIDDLE" | ([[OWASP_Autumn_of_Code_2006_-_Projects:_Live_CD|Live CD]])
 
! bgcolor="#FFFFFF" align="LEFT" valign="MIDDLE" | ([[OWASP_Autumn_of_Code_2006_-_Projects:_Live_CD|Live CD]])
| align="CENTER" | Josh's Live CD is 100% complete. As with all software it needs a little tweeking. This is a valuable addition to the OWASP collection.
+
| align="CENTER" | The Live CD is a valuable addition to the OWASP collection, since it allows the easy access, use and testing of several OWASP tools and documents
! align="CENTER" | 100%
+
! align="CENTER" | Yes
 
! align="CENTER" | Yes
 
! align="CENTER" | Yes
 
|-
 
|-
 
! height="18" bgcolor="#FFFFFF" align="LEFT" valign="MIDDLE" | AoC 17 Chris
 
! height="18" bgcolor="#FFFFFF" align="LEFT" valign="MIDDLE" | AoC 17 Chris
 
! bgcolor="#FFFFFF" align="LEFT" valign="MIDDLE" | ([[OWASP_Autumn_of_Code_2006_-_Projects:_CAL9000|CAL9000]])
 
! bgcolor="#FFFFFF" align="LEFT" valign="MIDDLE" | ([[OWASP_Autumn_of_Code_2006_-_Projects:_CAL9000|CAL9000]])
| align="CENTER" | {add comment}
+
| align="CENTER" | A new version of CAP 9000 is now released containing several new features and with extended support for more browsers
 
! align="CENTER" | Yes
 
! align="CENTER" | Yes
 
! align="CENTER" | Yes
 
! align="CENTER" | Yes
|-
+
|-http://www.owasp.org/index.php?title=OWASP_Autumn_of_Code_2006_-_Project_Completion&action=edit&section=1
 
! height="18" bgcolor="#FFFFFF" align="LEFT" valign="MIDDLE" | AoC 09 Mike
 
! height="18" bgcolor="#FFFFFF" align="LEFT" valign="MIDDLE" | AoC 09 Mike
 
! bgcolor="#FFFFFF" align="LEFT" valign="MIDDLE" | ([[OWASP_Autumn_of_Code_2006_-_Projects:_SiteGenerator_and_ORG|SiteGenerator and ORG]])
 
! bgcolor="#FFFFFF" align="LEFT" valign="MIDDLE" | ([[OWASP_Autumn_of_Code_2006_-_Projects:_SiteGenerator_and_ORG|SiteGenerator and ORG]])
| align="CENTER" | Mike's contributions to both [[OWASP Report Generator]](ORG) and [[OWASP Site Generator]] (OSG) where very valuable. In ORG Mike resolved tons of small/medium bugs and added several new major features (for example update to .NET 2.0). In OSG, Mike re-implemented the HttpModule, fixed several nasty bugs with the use of Altova's Authentic component, added new OSG vulnerabilities and cleanup the GUI. He also wrote documentation for those projects.
+
| align="CENTER" | Both [[OWASP Report Generator]](ORG) and [[OWASP Site Generator]] (OSG) receive large number of enhancements. In ORG tons of small/medium bugs were fixed and several new major features where added (in addition to an update to .NET 2.0). In OSG, HttpModule was re-implemented to use TCP, several nasty bugs were fixed and new OSG vulnerabilities where added.
 
! align="CENTER" | Yes
 
! align="CENTER" | Yes
 
! align="CENTER" | Yes
 
! align="CENTER" | Yes
Line 36: Line 36:
 
! height="18" bgcolor="#FFFFFF" align="LEFT" valign="MIDDLE" | AoC 21 Simon
 
! height="18" bgcolor="#FFFFFF" align="LEFT" valign="MIDDLE" | AoC 21 Simon
 
! bgcolor="#FFFFFF" align="LEFT" valign="MIDDLE" | ([[OWASP_Autumn_of_Code_2006_-_Projects:_Pantera|Pantera]])  
 
! bgcolor="#FFFFFF" align="LEFT" valign="MIDDLE" | ([[OWASP_Autumn_of_Code_2006_-_Projects:_Pantera|Pantera]])  
| align="CENTER" | Simon has delived a new version of Pantera  
+
| align="CENTER" | Simon delivered a new version of Pantera which contains several new features and is more optimized
! align="CENTER" | 100%
+
! align="CENTER" | Yes
 
! align="CENTER" | Yes
 
! align="CENTER" | Yes
 
|-
 
|-
 
! height="18" bgcolor="#FFFFFF" align="LEFT" valign="MIDDLE" | AoC 24 Sherif
 
! height="18" bgcolor="#FFFFFF" align="LEFT" valign="MIDDLE" | AoC 24 Sherif
 
! bgcolor="#FFFFFF" align="LEFT" valign="MIDDLE" | ([[OWASP_Autumn_of_Code_2006_-_Projects:_Web_Goat|Web Goat]])
 
! bgcolor="#FFFFFF" align="LEFT" valign="MIDDLE" | ([[OWASP_Autumn_of_Code_2006_-_Projects:_Web_Goat|Web Goat]])
| align="CENTER" | {add comment}
+
| align="CENTER" | 12 new lessons where added to WebGoat (for example: DOM/XML Injection, JSON Injection, Cross-Site Request Forgery , HTTP Splitting, etc..)
 
! align="CENTER" | Yes
 
! align="CENTER" | Yes
 
! align="CENTER" | Yes
 
! align="CENTER" | Yes
Line 48: Line 48:
 
! height="18" bgcolor="#FFFFFF" align="LEFT" valign="MIDDLE" | AoC 26 Matteo
 
! height="18" bgcolor="#FFFFFF" align="LEFT" valign="MIDDLE" | AoC 26 Matteo
 
! bgcolor="#FFFFFF" align="LEFT" valign="MIDDLE" | ([[OWASP_Autumn_of_Code_2006_-_Projects:_Testing_Guide|Testing Guide]])
 
! bgcolor="#FFFFFF" align="LEFT" valign="MIDDLE" | ([[OWASP_Autumn_of_Code_2006_-_Projects:_Testing_Guide|Testing Guide]])
| align="CENTER" | Matteo did a nice job in pulling all the artifacts from the previous guides together and also inspired other people to contribute to new sections. This Guide is an important addition to the OWASP catalogue.
+
| align="CENTER" | The previous Guide was greatly enhanced where large portions were re-writen and new material added. This Guide is an important addition to the OWASP catalogue.
 
! align="CENTER" | Yes
 
! align="CENTER" | Yes
 
! align="CENTER" | Yes
 
! align="CENTER" | Yes
Line 54: Line 54:
 
! height="18" bgcolor="#FFFFFF" align="LEFT" valign="MIDDLE" | AoC 18 Boris
 
! height="18" bgcolor="#FFFFFF" align="LEFT" valign="MIDDLE" | AoC 18 Boris
 
! bgcolor="#FFFFFF" align="LEFT" valign="MIDDLE" | ([[OWASP_Autumn_of_Code_2006_-_Projects:_Owasp_.Net_Tools|Owasp .Net Tools]])
 
! bgcolor="#FFFFFF" align="LEFT" valign="MIDDLE" | ([[OWASP_Autumn_of_Code_2006_-_Projects:_Owasp_.Net_Tools|Owasp .Net Tools]])
| align="CENTER" | Boris has done an impressive job in integrating the OWASP .Net tools SAM'SHE and ANSA in a new client server architecture which contains a 'built from scratch' client application which 'consumes' the results from the .Net tests
+
| align="CENTER" | The OWASP .Net tools SAM'SHE and ANSA are in integrated into a new client server architecture which contains a 'built from scratch' client application which 'consumes' the results from the .Net tests. This new tools (called OWASP Tiger) could be the beginning of a standard vulnerability collector.
! align="CENTER" | 100%
+
! align="CENTER" | Yes
 
! align="CENTER" | Yes
 
! align="CENTER" | Yes
 
|-
 
|-
 
! height="18" bgcolor="#FFFFFF" align="LEFT" valign="MIDDLE" | AoC 07 Aaron
 
! height="18" bgcolor="#FFFFFF" align="LEFT" valign="MIDDLE" | AoC 07 Aaron
 
! bgcolor="#FFFFFF" align="LEFT" valign="MIDDLE" | ([[OWASP_Autumn_of_Code_2006_-_Projects:_Website_and_Branding|Owasp Website]])
 
! bgcolor="#FFFFFF" align="LEFT" valign="MIDDLE" | ([[OWASP_Autumn_of_Code_2006_-_Projects:_Website_and_Branding|Owasp Website]])
| align="CENTER" | {add comment}
+
| align="CENTER" | Multiple sections of OWASP.org website where re-organized (for example the Projects Page), the OWASP newsletter was created and several pages received improvements in their layout
 
! align="CENTER" | Yes
 
! align="CENTER" | Yes
 
! align="CENTER" | Yes
 
! align="CENTER" | Yes
 
|-}
 
|-}

Latest revision as of 07:50, 3 June 2009

This page documents the completion of the OWASP Autumn Of Code 2006 projects (see the 9 sponsored projects in OWASP Autumn of Code 2006 - Selection)

Project Completion Report

OWASP Autumn of Code 2006 Results
Proposal ID Project Review by Project Leader Delivered on project requirements Authorized for Final Payment
AoC 13 Rogan (WebScarab NG) A working beta version is now available for WebScarad which implements a complete new user interface and is much more usable and practical (although still doesn't have all features from the current version) Yes Yes
AoC 04 Joshua (Live CD) The Live CD is a valuable addition to the OWASP collection, since it allows the easy access, use and testing of several OWASP tools and documents Yes Yes
AoC 17 Chris (CAL9000) A new version of CAP 9000 is now released containing several new features and with extended support for more browsers Yes Yes
AoC 09 Mike (SiteGenerator and ORG) Both OWASP Report Generator(ORG) and OWASP Site Generator (OSG) receive large number of enhancements. In ORG tons of small/medium bugs were fixed and several new major features where added (in addition to an update to .NET 2.0). In OSG, HttpModule was re-implemented to use TCP, several nasty bugs were fixed and new OSG vulnerabilities where added. Yes Yes
AoC 21 Simon (Pantera) Simon delivered a new version of Pantera which contains several new features and is more optimized Yes Yes
AoC 24 Sherif (Web Goat) 12 new lessons where added to WebGoat (for example: DOM/XML Injection, JSON Injection, Cross-Site Request Forgery , HTTP Splitting, etc..) Yes Yes
AoC 26 Matteo (Testing Guide) The previous Guide was greatly enhanced where large portions were re-writen and new material added. This Guide is an important addition to the OWASP catalogue. Yes Yes
AoC 18 Boris (Owasp .Net Tools) The OWASP .Net tools SAM'SHE and ANSA are in integrated into a new client server architecture which contains a 'built from scratch' client application which 'consumes' the results from the .Net tests. This new tools (called OWASP Tiger) could be the beginning of a standard vulnerability collector. Yes Yes
AoC 07 Aaron (Owasp Website) Multiple sections of OWASP.org website where re-organized (for example the Projects Page), the OWASP newsletter was created and several pages received improvements in their layout Yes Yes