Difference between revisions of "Project Information:Sqlibench"

From OWASP
Jump to: navigation, search
 
(9 intermediate revisions by 2 users not shown)
Line 23: Line 23:
 
* Here you can find the [https://www.owasp.org/index.php/OWASP_Summer_of_Code_2008_Applications#SQL_Injector_Benchmarking_Project_.28SQLiBENCH.29 SQLiBENCH Project Proposal] document
 
* Here you can find the [https://www.owasp.org/index.php/OWASP_Summer_of_Code_2008_Applications#SQL_Injector_Benchmarking_Project_.28SQLiBENCH.29 SQLiBENCH Project Proposal] document
 
* Here you can find the [https://www.owasp.org/index.php/OWASP_Summer_of_Code_2008_Applications_-_Need_Futher_Clarifications#SQL_Injector_Benchmarking_Project_.28SQLiBENCH.29 Further Clarifications] document
 
* Here you can find the [https://www.owasp.org/index.php/OWASP_Summer_of_Code_2008_Applications_-_Need_Futher_Clarifications#SQL_Injector_Benchmarking_Project_.28SQLiBENCH.29 Further Clarifications] document
 
+
* Here are the three main outcomes of the project; benchmarking report in raw [http://sqlibench.googlecode.com/files/sqlibench_v2.1.xml xml], in tabular [http://sqlibench.googlecode.com/files/sqlibench_matrix_v2.pdf pdf] and as a [http://www.webguvenligi.org/sqlibench/web/index.php web application].
 
  |}
 
  |}
 
{| style="width:100%" border="0" align="center"
 
{| style="width:100%" border="0" align="center"
Line 41: Line 41:
 
  |-
 
  |-
 
  | style="width:15%; background:#7B8ABD" align="center"|'''50% Review'''  
 
  | style="width:15%; background:#7B8ABD" align="center"|'''50% Review'''  
  | style="width:21%; background:#C2C2C2" align="center"|Objectives & Deliveries reached?<br>'''Yes/No''' (To update)<br>---------<br>[[Project Information:Sqlibench - 50 Review - Self Evaluation - A|See&Edit: 50% Review/Self-Evaluation (A)]]
+
  | style="width:21%; background:#C2C2C2" align="center"|Objectives & Deliveries reached?<br>'''Yes'''<br>---------<br>[[Project Information:Sqlibench - 50 Review - Self Evaluation - A|See&Edit: 50% Review/Self-Evaluation (A)]]
  | style="width:21%; background:#C2C2C2" align="center"|Objectives & Deliveries reached?<br>'''Yes/No''' (To update)<br>---------<br>[[Project Information:Sqlibench - 50 Review - First Reviewer - C|See&Edit: 50% Review/1st Reviewer (C)]]
+
  | style="width:21%; background:#C2C2C2" align="center"|Objectives & Deliveries reached?<br>'''Yes'''<br>---------<br>[[Project Information:Sqlibench - 50 Review - First Reviewer - C|See&Edit: 50% Review/1st Reviewer (C)]]
  | style="width:21%; background:#C2C2C2" align="center"|Objectives & Deliveries reached?<br>'''Yes/No''' (To update)<br>---------<br>[[Project Information:Sqlibench 50 Review Second Review E|See&Edit: 50%Review/2nd Reviewer (E)]]
+
  | style="width:21%; background:#C2C2C2" align="center"|Objectives & Deliveries reached?<br>'''Yes'''<br>---------<br>[[Project Information:Sqlibench 50 Review Second Review E|See&Edit: 50%Review/2nd Reviewer (E)]]
 
  | style="width:22%; background:#C2C2C2" align="center"|X  
 
  | style="width:22%; background:#C2C2C2" align="center"|X  
 
  |-
 
  |-
 
  | style="width:15%; background:#7B8ABD" align="center"|'''Final Review'''  
 
  | style="width:15%; background:#7B8ABD" align="center"|'''Final Review'''  
  | style="width:21%; background:#C2C2C2" align="center"|Objectives & Deliveries reached?<br>'''Yes/No''' (To update)<br>---------<br>What status has been reached?<br>'''Season of Code''' - (To update)<br>---------<br>[[Project Information:Sqlibench - Final Review - Self Evaluation - B|See&Edit: Final Review/SelfEvaluation (B)]]
+
  | style="width:21%; background:#C2C2C2" align="center"|Objectives & Deliveries reached?<br>'''Yes'''<br>---------<br>What status has been reached?<br>'''Beta'''<br>---------<br>[[Project Information:Sqlibench - Final Review - Self Evaluation - B|See&Edit: Final Review/SelfEvaluation (B)]]
  | style="width:21%; background:#C2C2C2" align="center"|Objectives & Deliveries reached?<br>'''Yes/No''' (To update)<br>---------<br>What status has been reached?<br>'''Season of Code''' - (To update)<br>---------<br>[[Project Information:Sqlibench - Final Review - First Reviewer - D|See&Edit: Final Review/1st Reviewer (D)]]
+
  | style="width:21%; background:#C2C2C2" align="center"|Objectives & Deliveries reached?<br>'''Yes'''<br>---------<br>What status has been reached?<br>'''Beta'''<br>---------<br>[[Project Information:Sqlibench - Final Review - First Reviewer - D|See&Edit: Final Review/1st Reviewer (D)]]
  | style="width:21%; background:#C2C2C2" align="center"|Objectives & Deliveries reached?<br>'''Yes/No''' (To update)<br>---------<br>What status has been reached?<br>'''Season of Code''' - (To update)<br>---------<br>[[Project Information:Sqlibench - Final Review - Second Reviewer - F|See&Edit: Final Review/2nd Reviewer (F)]]
+
  | style="width:21%; background:#C2C2C2" align="center"|Objectives & Deliveries reached?<br>'''Yes''' <br>---------<br>What status has been reached?<br>'''Beta''' <br>---------<br>[[Project Information:Sqlibench - Final Review - Second Reviewer - F|See&Edit: Final Review/2nd Reviewer (F)]]
 
  | style="width:22%; background:#C2C2C2" align="center"|X
 
  | style="width:22%; background:#C2C2C2" align="center"|X
 
  |-
 
  |-
 
  |}
 
  |}

Latest revision as of 15:47, 4 November 2008

PROJECT IDENTIFICATION
Project Name SQLiBENCH
Short Project Description SQLiBENCH is a benchmarking project of automatic sql injectors related to dumping databases. There're a lot of and great open source tools (takeover/dumpers/hybrid) for taking advantage of an sql injection vulnerability both used by web application security specialists and attackers. Techniques used, databases supported, algorithms employed and abilities implemented by these "sql injectors" greatly varies. It should be important to standardize general vulnerability techniques exists in web applications and one of the biggest one is sql manipulation. In our effort, we aim to produce a standardization of techniques used in exploiting sql injection by automatic tools.
Email Contacts Project Leaders
Bedirhan Urgun
Project Contributors
Mesut Timur
Mailing List/Subscribe
Mailing List/Use
First Reviewer
Ferruh Mavituna
background info
Second Reviewer
Kevin Fuller
background info
OWASP Board Member
(not applicable)
PROJECT MAIN LINKS
SPONSORS & GUIDELINES
Sponsor - OWASP Summer of Code 2008 Sponsored Project/Guidelines/Roadmap
ASSESSMENT AND REVIEW PROCESS
Review/Reviewer Author's Self Evaluation
(applicable for Alpha Quality & further)
First Reviewer
(applicable for Alpha Quality & further)
Second Reviewer
(applicable for Beta Quality & further)
OWASP Board Member
(applicable just for Release Quality)
50% Review Objectives & Deliveries reached?
Yes
---------
See&Edit: 50% Review/Self-Evaluation (A)
Objectives & Deliveries reached?
Yes
---------
See&Edit: 50% Review/1st Reviewer (C)
Objectives & Deliveries reached?
Yes
---------
See&Edit: 50%Review/2nd Reviewer (E)
X
Final Review Objectives & Deliveries reached?
Yes
---------
What status has been reached?
Beta
---------
See&Edit: Final Review/SelfEvaluation (B)
Objectives & Deliveries reached?
Yes
---------
What status has been reached?
Beta
---------
See&Edit: Final Review/1st Reviewer (D)
Objectives & Deliveries reached?
Yes
---------
What status has been reached?
Beta
---------
See&Edit: Final Review/2nd Reviewer (F)
X