Difference between revisions of "OWASP Newsletter 2"

Jump to: navigation, search
(Latest additions to the WIKI)
(OWASP News)
Line 2: Line 2:
====  OWASP News ====
====  OWASP News ====
* [[ORG (OWASP Report Generator]] - New release of [http://sourceforge.net/project/downloading.php?group_id=64424&use_mirror=osdn&filename=ORG_v0.88.msi| ORG Installer] (1/15/2007)
* [http://www.owasp.org/index.php/OWASP_Autumn_of_Code_2006_-_Projects:_Live_CD OWASP Live CD] Beta Release  - You can download it from [http://www.packetfocus.com/hackos]
* [http://www.owasp.org/index.php/OWASP_Autumn_of_Code_2006_-_Projects:_Live_CD OWASP Live CD] Beta Release  - You can download it from [http://www.packetfocus.com/hackos| http://www.packetfocus.com/hackos ]
====  Featured Projects: {TBD} ====
====  Featured Projects: {TBD} ====

Revision as of 19:35, 15 January 2007

Using the same format as used in OWASP Newsletter 1 this is the page that will be used for the next Newsletter


Featured Projects: {TBD}

Featured Story: Two free Java EE filters for CSRF, Reflected XSS, and Adobe XSS

OWASP contributors from Aspect Security have developed two new Java EE filters to protect against common web attacks. Just add a few lines to your web.xml file and enjoy the protection.

CSRF and Reflected XSS Filter for Java EE
This filter adds a random token to forms and URLs that prevent an attacker from executing both CSRF and reflected XSS attacks.
Adobe XSS Filter for Java EE
This filter protects against the recent XSS attacks on PDF files. By using a redirect and an encrypted token, this filter ensures that dangerous attacks are not passed into the Adobe reader plugin.

Latest Blog Entries

As posted in blogs.owasp.org

Latest additions to the WIKI

New pages

Edited Pages

  • OWASP_AppSec_Conference_Sponsors - for you if you want to sponsor one of the next OWASP conferences. Quote from page: "OWASP is accepting sponsorships for the 2007 OWASP Conferences. Financial sponsorship for a conference will help defray the non-profit OWASP Foundation's expenses to prepare for and hold this conference."
  • Chapter updates: New_Zealand , Denver

OWASP Community

OWASP News Headlines (from owasp.org website)

Application Security News (from Owasp.org)