Difference between revisions of "OWASP Newsletter 2"

From OWASP
Jump to: navigation, search
(Latest additions to the WIKI)
(Latest additions to the WIKI - New Pages)
Line 35: Line 35:
  
 
====  Latest additions to the WIKI - New Pages ====
 
====  Latest additions to the WIKI - New Pages ====
 +
* [[OWASP Testing Project v2.0 - Review Guidelines]]
 
* [[Chapter Leader Handbook]]
 
* [[Chapter Leader Handbook]]
* [[OWASP WebScarab NG Project]]
+
* [[OWASP WebScarab NG Project]] - Rogan details his work on the new version of WebScarab
 +
* [[Phoenix/Tools]] - Good list of Web App Sec tools
 
* Eoin has been quite busy this week working on the new version of the[[:Category: OWASP Code Review Project]]
 
* Eoin has been quite busy this week working on the new version of the[[:Category: OWASP Code Review Project]]
 
** [[Logging issues]]
 
** [[Logging issues]]
Line 44: Line 46:
 
** [[Reviewing Code for Logging Issues]]
 
** [[Reviewing Code for Logging Issues]]
 
** [[Reviewing The Secure Code Environment]]
 
** [[Reviewing The Secure Code Environment]]
** just starting [[Preface]] , [[Reasons for using automated tools]],[[Education and cultural change]], [[Tool Deployment Model]]
+
** [[Chapters Assigned]]
* [[]]
+
** just starting [[SQL Injection Cookbook template]], [[SQL Injection Cookbook - Oracle]], [[Preface]] , [[Reasons for using automated tools]],[[Education and cultural change]], [[Tool Deployment Model]]
* [[]]
+
* [[]]
+
* [[]]
+
* [[]]
+
  
 
====  OWASP Community ====   
 
====  OWASP Community ====   

Revision as of 00:40, 15 January 2007

Using the same format as used in OWASP Newsletter 1 this is the page that will be used for the next Newsletter

OWASP News

Featured Projects: {TBD}

Featured Story: Two free Java EE filters for CSRF, Reflected XSS, and Adobe XSS

OWASP contributors from Aspect Security have developed two new Java EE filters to protect against common web attacks. Just add a few lines to your web.xml file and enjoy the protection.

CSRF and Reflected XSS Filter for Java EE
This filter adds a random token to forms and URLs that prevent an attacker from executing both CSRF and reflected XSS attacks.
Adobe XSS Filter for Java EE
This filter protects against the recent XSS attacks on PDF files. By using a redirect and an encrypted token, this filter ensures that dangerous attacks are not passed into the Adobe reader plugin.

Latest Blog Entries

As posted in blogs.owasp.org

Latest additions to the WIKI - New Pages

OWASP Community

OWASP News Headlines (from owasp.org website)

Application Security News (from Owasp.org)