Difference between revisions of "OWASP Backend Security Project"

From OWASP
Jump to: navigation, search
(Introduction)
(OWASP Backend Security Project (Development))
Line 7: Line 7:
 
==OWASP Backend Security Project (Development)==
 
==OWASP Backend Security Project (Development)==
  
2.1 Overview
+
2.1 [http://www.owasp.org/index.php/SQL_injection SQL Injection] (100%, OWASP wiki)
  
2.2 [http://www.owasp.org/index.php/SQL_injection SQL Injection] (100%, OWASP wiki)
+
2.2 [http://www.owasp.org/index.php/LDAP_injection LDAP Injection] (100%, OWASP wiki)
  
2.3 [http://www.owasp.org/index.php/LDAP_injection LDAP Injection] (100%, OWASP wiki)
+
2.3 [http://www.owasp.org/index.php/OWASP_Backend_Security_Project_Java_Security_Programming JAVA Backend Security programming] (100%, Francesco Perna)
  
2.4 [http://www.owasp.org/index.php/OWASP_Backend_Security_Project_Java_Security_Programming JAVA Backend Security programming] (100%, Francesco Perna)
+
2.3.1 JAVA preventing SQL Injection
  
2.4.1 JAVA preventing SQL Injection
+
2.3.2 JAVA preventing LDAP Injection
  
2.4.2 JAVA preventing LDAP Injection
+
2.4 [http://www.owasp.org/index.php/OWASP_Backend_Security_Project_PHP_Security_Programming PHP Backend Security programming] (100%, Daniele Bellucci)
  
2.5 [http://www.owasp.org/index.php/OWASP_Backend_Security_Project_PHP_Security_Programming PHP Backend Security programming] (100%, Daniele Bellucci)
+
2.4.1 PHP preventing SQL Injection
  
2.5.1 PHP preventing SQL Injection
+
2.4.2 PHP preventing LDAP Injection
  
2.5.2 PHP preventing LDAP Injection
+
2.5 [http://www.owasp.org/index.php/OWASP_Backend_Security_Project_.NET_Security_Programming .NET Backend Security programming] (100%, Guido Pederzini)
  
2.6 [http://www.owasp.org/index.php/OWASP_Backend_Security_Project_.NET_Security_Programming .NET Backend Security programming] (100%, Guido Pederzini)
+
2.5.1 .NET preventing SQL Injection
  
2.6.1 .NET preventing SQL Injection
+
2.5.2 .NET preventing LDAP Injection
 
+
2.6.2 .NET preventing LDAP Injection
+
  
 
==OWASP Backend Security Project (Hardening)==
 
==OWASP Backend Security Project (Hardening)==

Revision as of 20:02, 20 October 2008

Introduction

1.1 About OWASP Backend Security Project

1.2 Contributors

OWASP Backend Security Project (Development)

2.1 SQL Injection (100%, OWASP wiki)

2.2 LDAP Injection (100%, OWASP wiki)

2.3 JAVA Backend Security programming (100%, Francesco Perna)

2.3.1 JAVA preventing SQL Injection

2.3.2 JAVA preventing LDAP Injection

2.4 PHP Backend Security programming (100%, Daniele Bellucci)

2.4.1 PHP preventing SQL Injection

2.4.2 PHP preventing LDAP Injection

2.5 .NET Backend Security programming (100%, Guido Pederzini)

2.5.1 .NET preventing SQL Injection

2.5.2 .NET preventing LDAP Injection

OWASP Backend Security Project (Hardening)

3.1 Overview

3.2 DBMS

3.2.1 Oracle Hardening (100%, Pasquale De Rinaldis)

3.2.2 SQL Server Hardening (100%, Guido Pederzini)

3.2.3 DB2 Hardening (100%, Giuseppe Gottardi, Guido Landi)

3.2.4 MySQL Hardening (100%, Erik Sonnleitner)

3.2.5 PostgreSQL Hardening (80%, Maurizio Agazzini)

OWASP Backend Security Project (Testing)

4.1 Overview

4.2 Database security testing (100%, Testing Guide)

4.2.1 DBMS Fingerprinting (100%, Daniele Bellucci)

4.2.2 Testing Oracle (100%, Testing Guide)

4.2.3 Testing SQL Server (100%, Testing Guide)

4.2.4 Testing MySQL (100%, Testing Guide)

4.2.5 Testing PostgreSQL (100%, Daniele Bellucci)

4.3 LDAP security testing (100%, Testing Guide)

4.4 Tools (100%, Fabio Mattiussi)