Difference between revisions of "OWASP Backend Security Project"

From OWASP
Jump to: navigation, search
(OWASP Backend Security Project (Testing))
 
(21 intermediate revisions by one user not shown)
Line 1: Line 1:
==Introduction==
+
Now Available PDF version: [http://www.owasp.org/index.php/Image:OWASP_Backend_Security_Project_1.0beta.pdf OWASP Backend Security Project 1.0 beta.pdf]
  
1.1 About OWASP Backend Security Project
+
Now Available DOC version: [http://www.owasp.org/index.php/Image:OWASP_Backend_Security_Project_1.0beta.doc OWASP Backend Security Project 1.0 beta.doc]
  
1.2 Contributors
+
==Introduction==
  
==OWASP Backend Security Project (Development)==
+
1.1 [http://www.owasp.org/index.php/OWASP_Backend_Security_Project_About About OWASP Backend Security Project]
  
2.1 Overview
+
1.2 [http://www.owasp.org/index.php/OWASP_Backend_Security_Project_Contributors Contributors]
  
2.2 [http://www.owasp.org/index.php/SQL_injection SQL Injection] (100%, OWASP wiki)
+
1.3 [http://www.owasp.org/index.php/SQL_injection SQL Injection] (100%, OWASP wiki)
  
2.3 [http://www.owasp.org/index.php/LDAP_injection LDAP Injection] (100%, OWASP wiki)
+
1.4 [http://www.owasp.org/index.php/LDAP_injection LDAP Injection] (100%, OWASP wiki)
  
2.4 [http://www.owasp.org/index.php/OWASP_Backend_Security_Project_Java_Security_Programming JAVA Backend Security programming] (10%, Francesco Perna)
+
==OWASP Backend Security Project (Development)==
  
2.4.1 JAVA preventing SQL Injection
+
2.1 [http://www.owasp.org/index.php/OWASP_Backend_Security_Project_Java_Security_Programming JAVA Backend Security programming] (100%, Francesco Perna)
  
2.4.2 JAVA preventing LDAP Injection
+
2.2 [http://www.owasp.org/index.php/OWASP_Backend_Security_Project_PHP_Security_Programming PHP Backend Security programming] (100%, Daniele Bellucci)
  
2.5 [http://www.owasp.org/index.php/OWASP_Backend_Security_Project_PHP_Security_Programming PHP Backend Security programming] (100%, Daniele Bellucci)
+
2.3 [http://www.owasp.org/index.php/OWASP_Backend_Security_Project_.NET_Security_Programming .NET Backend Security programming] (100%, Guido Pederzini)
 
+
2.5.1 PHP preventing SQL Injection
+
 
+
2.5.2 PHP preventing LDAP Injection
+
 
+
2.6 [http://www.owasp.org/index.php/OWASP_Backend_Security_Project_.NET_Security_Programming .NET Backend Security programming] (100%, Guido Pederzini)
+
 
+
2.6.1 .NET preventing SQL Injection
+
 
+
2.6.2 .NET preventing LDAP Injection
+
  
 
==OWASP Backend Security Project (Hardening)==
 
==OWASP Backend Security Project (Hardening)==
  
3.1 Overview
+
3.1 [http://www.owasp.org/index.php/OWASP_Backend_Security_Project_Oracle_Hardening Oracle  Hardening] (100%, Pasquale De Rinaldis)
  
3.2 DBMS
+
3.2 [http://www.owasp.org/index.php/OWASP_Backend_Security_Project_SQLServer_Hardening SQL Server Hardening] (100%, Guido Pederzini)
  
3.2.1 [http://www.owasp.org/index.php/OWASP_Backend_Security_Project_Oracle_Hardening Oracle  Hardening] (100%, Pasquale De Rinaldis)
+
3.3 [http://www.owasp.org/index.php/OWASP_Backend_Security_Project_DB2_Hardening DB2 Hardening] (100%, Giuseppe Gottardi, Guido Landi)
  
3.2.2 [http://www.owasp.org/index.php/OWASP_Backend_Security_Project_SQLServer_Hardening SQL Server Hardening] (100%, Guido Pederzini)
+
3.4 [http://www.owasp.org/index.php/OWASP_Backend_Security_Project_MySQL_Hardening MySQL Hardening] (100%, Erik Sonnleitner)
  
3.2.3 [http://www.owasp.org/index.php/OWASP_Backend_Security_Project_DB2_Hardening DB2 Hardening] (100%, Giuseppe Gottardi, Guido Landi)
+
3.5 [http://www.owasp.org/index.php/OWASP_Backend_Security_Project_PostgreSQL_Hardening PostgreSQL Hardening] (100%, Maurizio Agazzini)
 
+
3.2.4 [http://www.owasp.org/index.php/OWASP_Backend_Security_Project_MySQL_Hardening MySQL Hardening] (90%, Erik Sonnleitner)
+
 
+
3.2.5 [http://www.owasp.org/index.php/OWASP_Backend_Security_Project_PostgreSQL_Hardening PostgreSQL Hardening] (0%, Maurizio Agazzini)
+
  
 
==OWASP Backend Security Project (Testing)==
 
==OWASP Backend Security Project (Testing)==
  
4.1 Overview
+
4.1 [http://www.owasp.org/index.php/OWASP_Backend_Security_Project_DBMS_Fingerprint DBMS Fingerprinting] (100%, Daniele Bellucci)
 
+
4.2 [http://www.owasp.org/index.php/Testing_for_SQL_Injection Database security testing] (100%, Testing Guide)
+
 
+
4.2.1 [http://www.owasp.org/index.php/OWASP_Backend_Security_Project_DBMS_Fingerprint DBMS Fingerprinting] (95%, Daniele Bellucci)
+
  
4.2.2 [http://www.owasp.org/index.php/Testing_for_Oracle Testing Oracle] (100%, Testing Guide)
+
4.2 [http://www.owasp.org/index.php/Testing_for_Oracle Testing Oracle] (100%, Testing Guide)
  
4.2.3 [http://www.owasp.org/index.php/Testing_for_SQL_Server Testing SQL Server] (100%, Testing Guide)
+
4.3 [http://www.owasp.org/index.php/Testing_for_SQL_Server Testing SQL Server] (100%, Testing Guide)
  
4.2.4 [http://www.owasp.org/index.php/Testing_for_MySQL Testing MySQL] (100%, Testing Guide)
+
4.4 [http://www.owasp.org/index.php/Testing_for_MySQL Testing MySQL] (100%, Testing Guide)
  
4.2.5 [http://www.owasp.org/index.php/OWASP_Backend_Security_Project_Testing_PostgreSQL Testing PostgreSQL] (100%, Daniele Bellucci)  
+
4.5 [http://www.owasp.org/index.php/OWASP_Backend_Security_Project_Testing_PostgreSQL Testing PostgreSQL] (100%, Daniele Bellucci)  
  
4.3 [http://www.owasp.org/index.php/Testing_for_LDAP_Injection LDAP security testing] (100%, Testing Guide)
+
4.6 [http://www.owasp.org/index.php/Testing_for_LDAP_Injection LDAP security testing] (100%, Testing Guide)
  
4.4 [http://www.owasp.org/index.php/OWASP_Backend_Security_Project_Tools Tools] (70%, Fabio Mattiussi)
+
4.7 [http://www.owasp.org/index.php/OWASP_Backend_Security_Project_Tools Tools] (100%, Fabio Mattiussi)

Latest revision as of 07:23, 22 December 2008

Now Available PDF version: OWASP Backend Security Project 1.0 beta.pdf

Now Available DOC version: OWASP Backend Security Project 1.0 beta.doc

Contents

Introduction

1.1 About OWASP Backend Security Project

1.2 Contributors

1.3 SQL Injection (100%, OWASP wiki)

1.4 LDAP Injection (100%, OWASP wiki)

OWASP Backend Security Project (Development)

2.1 JAVA Backend Security programming (100%, Francesco Perna)

2.2 PHP Backend Security programming (100%, Daniele Bellucci)

2.3 .NET Backend Security programming (100%, Guido Pederzini)

OWASP Backend Security Project (Hardening)

3.1 Oracle Hardening (100%, Pasquale De Rinaldis)

3.2 SQL Server Hardening (100%, Guido Pederzini)

3.3 DB2 Hardening (100%, Giuseppe Gottardi, Guido Landi)

3.4 MySQL Hardening (100%, Erik Sonnleitner)

3.5 PostgreSQL Hardening (100%, Maurizio Agazzini)

OWASP Backend Security Project (Testing)

4.1 DBMS Fingerprinting (100%, Daniele Bellucci)

4.2 Testing Oracle (100%, Testing Guide)

4.3 Testing SQL Server (100%, Testing Guide)

4.4 Testing MySQL (100%, Testing Guide)

4.5 Testing PostgreSQL (100%, Daniele Bellucci)

4.6 LDAP security testing (100%, Testing Guide)

4.7 Tools (100%, Fabio Mattiussi)