Difference between revisions of "OWASP Backend Security Project"

From OWASP
Jump to: navigation, search
(OWASP Backend Security Project (Testing))
Line 53: Line 53:
 
4.2 [http://www.owasp.org/index.php/OWASP_Backend_Security_Project_DB_Testing Database security testing] (40%, Daniele Bellucci) ***(alpha version)***
 
4.2 [http://www.owasp.org/index.php/OWASP_Backend_Security_Project_DB_Testing Database security testing] (40%, Daniele Bellucci) ***(alpha version)***
  
4.2.1 [http://www.owasp.org/index.php/OWASP_Backend_Security_Project_DBMS_Fingerprint DBMS Fingerprinting] (85%, Daniele Bellucci) ***(alpha version)***
+
4.2.1 [http://www.owasp.org/index.php/OWASP_Backend_Security_Project_DBMS_Fingerprint DBMS Fingerprinting] (90%, Daniele Bellucci) ***(alpha version)***
  
 
4.2.2 [http://www.owasp.org/index.php/Testing_for_Oracle Testing Oracle] (100%, Testing Guide)
 
4.2.2 [http://www.owasp.org/index.php/Testing_for_Oracle Testing Oracle] (100%, Testing Guide)
Line 61: Line 61:
 
4.2.4 [http://www.owasp.org/index.php/Testing_for_MySQL Testing MySQL] (100%, Testing Guide)
 
4.2.4 [http://www.owasp.org/index.php/Testing_for_MySQL Testing MySQL] (100%, Testing Guide)
  
4.2.5 [http://www.owasp.org/index.php/OWASP_Backend_Security_Project_Testing_PostgreSQL Testing PostgreSQL] (80%, Daniele Bellucci) ***(alpha version)***
+
4.2.5 [http://www.owasp.org/index.php/OWASP_Backend_Security_Project_Testing_PostgreSQL Testing PostgreSQL] (100%, Daniele Bellucci)  
  
 
4.3 [http://www.owasp.org/index.php/Testing_for_LDAP_Injection LDAP security testing] (100%, Testing Guide)
 
4.3 [http://www.owasp.org/index.php/Testing_for_LDAP_Injection LDAP security testing] (100%, Testing Guide)
  
 
4.4 [http://www.owasp.org/index.php/OWASP_Backend_Security_Project_Tools Tools] (50%, Fabio Mattiussi, Simone Savi) ***descriptions (alpha version)***
 
4.4 [http://www.owasp.org/index.php/OWASP_Backend_Security_Project_Tools Tools] (50%, Fabio Mattiussi, Simone Savi) ***descriptions (alpha version)***

Revision as of 17:06, 28 July 2008

Contents

Introduction

1.1 About OWASP Backend Security Project

1.2 Contributors

OWASP Backend Security Project (Development)

2.1 Overview

2.2 SQL Injection (100%, OWASP wiki)

2.3 LDAP Injection (100%, OWASP wiki)

2.4 JAVA Backend Security programming (10%, Francesco Perna)

2.4.1 JAVA preventing SQL Injection

2.4.2 JAVA preventing LDAP Injection

2.5 PHP Backend Security programming (100%, Daniele Bellucci)

2.5.1 PHP preventing SQL Injection

2.5.2 PHP preventing LDAP Injection

2.6 .NET Backend Security programming (100%, Guido Pederzini)

2.6.1 .NET preventing SQL Injection

2.6.2 .NET preventing LDAP Injection

OWASP Backend Security Project (Hardening)

3.1 Overview

3.2 DBMS

3.2.1 Oracle Hardening (50%, Pasquale De Rinaldis) ***(alpha version)***

3.2.2 SQL Server Hardening (50%, Guido Pederzini)

3.2.3 DB2 Hardening (60%, Giuseppe Gottardi) ***(alpha version)***

3.2.4 MySQL Hardening (70%, Erik Sonnleitner)

3.2.5 PostgreSQL Hardening (0%, Maurizio Agazzini)

OWASP Backend Security Project (Testing)

4.1 Overview

4.2 Database security testing (40%, Daniele Bellucci) ***(alpha version)***

4.2.1 DBMS Fingerprinting (90%, Daniele Bellucci) ***(alpha version)***

4.2.2 Testing Oracle (100%, Testing Guide)

4.2.3 Testing SQL Server (100%, Testing Guide)

4.2.4 Testing MySQL (100%, Testing Guide)

4.2.5 Testing PostgreSQL (100%, Daniele Bellucci)

4.3 LDAP security testing (100%, Testing Guide)

4.4 Tools (50%, Fabio Mattiussi, Simone Savi) ***descriptions (alpha version)***