Difference between revisions of "Project Information:template LiveCD Education"

From OWASP
Jump to: navigation, search
Line 3: Line 3:
 
  |-
 
  |-
 
  | style="width:15%; background:#7B8ABD" align="center"|'''Project Name'''
 
  | style="width:15%; background:#7B8ABD" align="center"|'''Project Name'''
  | colspan="6" style="width:85%; background:#cccccc" align="left"|<font color="black">'''XXXXXXXXXXXXXXXXX'''  
+
  | colspan="6" style="width:85%; background:#cccccc" align="left"|<font color="black">'''OWASP LiveCD Education Project'''  
 
  |-
 
  |-
 
  | style="width:15%; background:#7B8ABD" align="center"| '''Short Project Description'''  
 
  | style="width:15%; background:#7B8ABD" align="center"| '''Short Project Description'''  
  | colspan="6" style="width:85%; background:#cccccc" align="left"|This project is  
+
  | colspan="6" style="width:85%; background:#cccccc" align="left"|  
 +
* '''Executive Summary''': I am proposing a new project that will educate current OWASP LiveCD users and assist in generating more LiveCD users. The education will be conducted by creating documentation and media using popular tutorial techniques such as Challenges, text tutorials, and video tutorials. The tutorials will help guide all types of users through using the OWASP LiveCD and its tools. After the completion of this project we propose that all of the media be added to the LiveCD so that users have a single all encompassing package to expand their knowledge of application security. This project will effectively bring together documentation for many OWASP projects into one deliverable that can be used at conferences, trade shows, and by educators. The key to promoting a live security distribution is helping the community learn to love every aspect of it.
 +
[edit]<br>
 +
* '''Objective''': The objective is to produce multiple quality instructor led video tutorials and text tutorials that educate users on using the LiveCD and tools within. This will also include in assisting to make sure that the LiveCD is not only an array of tools but a powerful medium for education.
 
  |-
 
  |-
 
  | style="width:15%; background:#7B8ABD" align="center"|'''Email Contacts'''
 
  | style="width:15%; background:#7B8ABD" align="center"|'''Email Contacts'''
  | style="width:14%; background:#cccccc" align="center"|Project Leader<br>[mailto:mro(at)securenet.de '''Matthias Rohr''']
+
  | style="width:14%; background:#cccccc" align="center"|Project Leader<br>[mailto:spyroinc@gmail.com '''Josh Sweeney''']
 
  | style="width:14%; background:#cccccc" align="center"|Project Contributors<br>(if applicable)<br>[mailto:to(at)change '''Name&Email''']
 
  | style="width:14%; background:#cccccc" align="center"|Project Contributors<br>(if applicable)<br>[mailto:to(at)change '''Name&Email''']
  | style="width:14%; background:#cccccc" align="center"|[mailto:Owasp-XXXXXXXXXXXXXXXXX@lists.owasp.org '''Project Mailing List''']
+
  | style="width:14%; background:#cccccc" align="center"|['''Mailing List/Subscribe''']<br>[mailto:Owasp-XXXXXXXXXXXXXXXXX@lists.owasp.org '''Mailing List/Use''']
  | style="width:14%; background:#cccccc" align="center"|First Reviewer<br>[mailto:to(at)change '''Rogan Dawes''']
+
  | style="width:14%; background:#cccccc" align="center"|First Reviewer<br>[mailto:eoin.keary@owasp.org '''Eoin Keary''']
  | style="width:14%; background:#cccccc" align="center"|Second Reviewer<br>[mailto:ah@securenet.de '''Achim Hoffmann''']
+
  | style="width:14%; background:#cccccc" align="center"|Second Reviewer<br>[mailto:name@name '''?''']
  | style="width:15%; background:#cccccc" align="center"|OWASP Board Member<br>(if applicable)<br>[mailto:name(at)name '''Name&Email''']
+
  | style="width:15%; background:#cccccc" align="center"|OWASP Board Member<br>[mailto:name(at)name '''?''']
 
  |}
 
  |}
 
{| style="width:100%" border="0" align="center"
 
{| style="width:100%" border="0" align="center"
Line 20: Line 23:
 
  |-
 
  |-
 
  | style="width:100%; background:#cccccc" align="center"|
 
  | style="width:100%; background:#cccccc" align="center"|
* (If appropriate, links to be added)
+
; [http://www.owasp.org/images/1/1b/OWASP_-_WebScarab_%E2%80%93_Exploiting_Input_Validation.pdf OWASP - WebScarab Exploiting Input Validation PDF][http://www.securitydistro.com/index.php?option=com_content&task=view&id=246&Itemid=43 HTML]
 +
: Exploiting parameters and input validation.
 +
 
 +
; [http://www.owasp.org/images/2/23/OWASP_-_LabRat_-_Up_and_Running_on_Hard_Disk.pdf OWASP - LabRat Up and Running on Hard Disk PDF] [http://www.securitydistro.com/index.php?option=com_content&task=view&id=243&Itemid=43 HTML] 
 +
: Guide to installing OWASP LabRat to your hard disk.
 +
 
 +
; [http://www.owasp.org/images/a/a1/OWASP_-_Running_WebGoat_in_LabRat.pdf OWASP - Running WebGoat in LabRat PDF][http://www.securitydistro.com/index.php?option=com_content&task=view&id=247&Itemid=43 HTML]   
 +
: Guide to getting WebGoat up and Running in LabRat.
 +
 
 +
; [http://www.owasp.org/images/d/d8/OWASP_-_Using_JBroFuzzer_in_LabRat.pdf OWASP - Using JBroFuzzer in LabRat PDF ][http://www.securitydistro.com/index.php?option=com_content&task=view&id=252&Itemid=43 HTML]   
 +
: Introduction to using JBroFuzzer in LabRat.
 +
 
 +
; [http://www.owasp.org/images/c/c8/OWASP_-_WebGoat_-_Introduction_to_XSS.pdf OWASP - WebGoat Introduction to XSS PDF ] [http://www.securitydistro.com/index.php?option=com_content&task=view&id=245&Itemid=43 HTML] 
 +
: Introduction and working examples of XSS using WebGoat in LabRat.
 +
 
 +
; [http://www.owasp.org/images/0/0e/OWASP_-_Building_Your_Own_LabRat_ISO.pdf OWASP - Building Your Own LabRat ISO PDF ] [http://www.securitydistro.com/index.php?option=com_content&task=view&id=253&Itemid=43 HTML] 
 +
: Guide to building your own custom LabRat ISO distribution.
 +
 
 +
* (If appropriate, more links to be added)
 
  |}
 
  |}
 
{| style="width:100%" border="0" align="center"
 
{| style="width:100%" border="0" align="center"
 
  ! colspan="6" align="center" style="background:#4058A0; color:white"|<font color="white">'''SPONSORS & GUIDELINES'''  
 
  ! colspan="6" align="center" style="background:#4058A0; color:white"|<font color="white">'''SPONSORS & GUIDELINES'''  
 
  |-
 
  |-
  | style="width:50%; background:#cccccc" align="center"|[[OWASP Summer of Code 2008|Sponsor - '''OWASP Summer of Code 2008''']]  
+
  | style="width:50%; background:#cccccc" align="center"|
  | style="width:50%; background:#cccccc" align="center"|[[OWASP Summer of Code 2008 Applications - Need Futher Clarifications#XXXXXXXXXXXXXXXXX|'''Sponsored Project/Guidelines/Roadmap''']]
+
*[[OWASP Spring Of Code 2007|'''OWASP Spring Of Code 2007''']]
 +
*[http://www.securitydistro.com/ '''Security Distro''']
 +
  | style="width:50%; background:#cccccc" align="center"|[[SpoC 007 - OWASP LiveCD Education Project#Derivables|'''Sponsored Project/Guidelines/Roadmap''']]
 
  |}
 
  |}
 
{| style="width:100%" border="0" align="center"
 
{| style="width:100%" border="0" align="center"
Line 38: Line 61:
 
  |-
 
  |-
 
  | style="width:15%; background:#7B8ABD" align="center"|'''50% Review'''  
 
  | style="width:15%; background:#7B8ABD" align="center"|'''50% Review'''  
  | style="width:21%; background:#C2C2C2" align="center"|Objectives & Deliveries reached?<br>'''Yes/No''' (To update)<br>---------<br>[[Project Information:template XXXXXXXXXXXXXXXXX - 50 Review - Self Evaluation - A|See&Edit:50% Review/Self-Evaluation (A)]]
+
  | style="width:21%; background:#C2C2C2" align="center"|Objectives & Deliveries reached?<br>'''Yes/No''' (To update)<br>---------<br>[[Project Information:template LiveCD Education - 50 Review - Self Evaluation - A|See&Edit:50% Review/Self-Evaluation (A)]]
  | style="width:21%; background:#C2C2C2" align="center"|Objectives & Deliveries reached?<br>'''Yes/No''' (To update)<br>---------<br>[[Project Information:template XXXXXXXXXXXXXXXXX - 50 Review - First Reviewer - C|See&Edit: 50% Review/1st Reviewer (C)]]
+
  | style="width:21%; background:#C2C2C2" align="center"|Objectives & Deliveries reached?<br>'''Yes/No''' (To update)<br>---------<br>[[Project Information:template LiveCD Education - 50 Review - First Reviewer - C|See&Edit: 50% Review/1st Reviewer (C)]]
  | style="width:21%; background:#C2C2C2" align="center"|Objectives & Deliveries reached?<br>'''Yes/No''' (To update)<br>---------<br>[[Project Information:template XXXXXXXXXXXXXXXXX 50 Review Second Review E|See&Edit: 50%Review/2nd Reviewer (E)]]
+
  | style="width:21%; background:#C2C2C2" align="center"|Objectives & Deliveries reached?<br>'''Yes/No''' (To update)<br>---------<br>[[Project Information:template LiveCD Education 50 Review Second Review E|See&Edit: 50%Review/2nd Reviewer (E)]]
 
  | style="width:22%; background:#C2C2C2" align="center"|X  
 
  | style="width:22%; background:#C2C2C2" align="center"|X  
 
  |-
 
  |-
 
  | style="width:15%; background:#7B8ABD" align="center"|'''Final Review'''  
 
  | style="width:15%; background:#7B8ABD" align="center"|'''Final Review'''  
  | style="width:21%; background:#C2C2C2" align="center"|Objectives & Deliveries reached?<br>'''Yes/No''' (To update)<br>---------<br>Which status has been reached?<br>'''Season of Code''' - (To update)<br>---------<br>[[Project Information:template XXXXXXXXXXXXXXXXX - Final Review - Self Evaluation - B|See&Edit: Final Review/SelfEvaluation (B)]]
+
  | style="width:21%; background:#C2C2C2" align="center"|Objectives & Deliveries reached?<br>'''Yes/No''' (To update)<br>---------<br>Which status has been reached?<br>'''Season of Code''' - (To update)<br>---------<br>[[Project Information:template LiveCD Education - Final Review - Self Evaluation - B|See&Edit: Final Review/SelfEvaluation (B)]]
  | style="width:21%; background:#C2C2C2" align="center"|Objectives & Deliveries reached?<br>'''Yes/No''' (To update)<br>---------<br>Which status has been reached?<br>'''Season of Code''' - (To update)<br>---------<br>[[Project Information:template XXXXXXXXXXXXXXXXX - Final Review - First Reviewer - D|See&Edit: Final Review/1st Reviewer (D)]]
+
  | style="width:21%; background:#C2C2C2" align="center"|Objectives & Deliveries reached?<br>'''Yes/No''' (To update)<br>---------<br>Which status has been reached?<br>'''Season of Code''' - (To update)<br>---------<br>[[Project Information:template LiveCD Education - Final Review - First Reviewer - D|See&Edit: Final Review/1st Reviewer (D)]]
  | style="width:21%; background:#C2C2C2" align="center"|Objectives & Deliveries reached?<br>'''Yes/No''' (To update)<br>---------<br>Which status has been reached?<br>'''Season of Code''' - (To update)<br>---------<br>[[Project Information:template XXXXXXXXXXXXXXXXX - Final Review - Second Reviewer - F|See&Edit: Final Review/2nd Reviewer (F)]]
+
  | style="width:21%; background:#C2C2C2" align="center"|Objectives & Deliveries reached?<br>'''Yes/No''' (To update)<br>---------<br>Which status has been reached?<br>'''Season of Code''' - (To update)<br>---------<br>[[Project Information:template LiveCD Education - Final Review - Second Reviewer - F|See&Edit: Final Review/2nd Reviewer (F)]]
  | style="width:22%; background:#C2C2C2" align="center"|Objectives & Deliveries reached?<br>'''Yes/No''' (To update)<br>---------<br>Which status has been reached?<br>'''Season of Code''' - (To update)<br>---------<br>[[Project Information:template XXXXXXXXXXXXXXXXX - Final Review - OWASP Board Member - G|See/Edit: Final Review/Board Member (G)]]
+
  | style="width:22%; background:#C2C2C2" align="center"|Objectives & Deliveries reached?<br>'''Yes/No''' (To update)<br>---------<br>Which status has been reached?<br>'''Season of Code''' - (To update)<br>---------<br>[[Project Information:template LiveCD Education - Final Review - OWASP Board Member - G|See/Edit: Final Review/Board Member (G)]]
 
  |-
 
  |-
 
  |}
 
  |}

Revision as of 11:31, 25 June 2008

PROJECT IDENTIFICATION
Project Name OWASP LiveCD Education Project
Short Project Description
  • Executive Summary: I am proposing a new project that will educate current OWASP LiveCD users and assist in generating more LiveCD users. The education will be conducted by creating documentation and media using popular tutorial techniques such as Challenges, text tutorials, and video tutorials. The tutorials will help guide all types of users through using the OWASP LiveCD and its tools. After the completion of this project we propose that all of the media be added to the LiveCD so that users have a single all encompassing package to expand their knowledge of application security. This project will effectively bring together documentation for many OWASP projects into one deliverable that can be used at conferences, trade shows, and by educators. The key to promoting a live security distribution is helping the community learn to love every aspect of it.

[edit]

  • Objective: The objective is to produce multiple quality instructor led video tutorials and text tutorials that educate users on using the LiveCD and tools within. This will also include in assisting to make sure that the LiveCD is not only an array of tools but a powerful medium for education.
Email Contacts Project Leader
Josh Sweeney
Project Contributors
(if applicable)
Name&Email
[Mailing List/Subscribe]
Mailing List/Use
First Reviewer
Eoin Keary
Second Reviewer
?
OWASP Board Member
?
PROJECT MAIN LINKS
OWASP - WebScarab Exploiting Input Validation PDFHTML
Exploiting parameters and input validation.
OWASP - LabRat Up and Running on Hard Disk PDF HTML
Guide to installing OWASP LabRat to your hard disk.
OWASP - Running WebGoat in LabRat PDFHTML
Guide to getting WebGoat up and Running in LabRat.
OWASP - Using JBroFuzzer in LabRat PDF HTML
Introduction to using JBroFuzzer in LabRat.
OWASP - WebGoat Introduction to XSS PDF HTML
Introduction and working examples of XSS using WebGoat in LabRat.
OWASP - Building Your Own LabRat ISO PDF HTML
Guide to building your own custom LabRat ISO distribution.
  • (If appropriate, more links to be added)
SPONSORS & GUIDELINES
Sponsored Project/Guidelines/Roadmap
ASSESSMENT AND REVIEW PROCESS
Review/Reviewer Author's Self Evaluation
(applicable for Alpha Quality & further)
First Reviewer
(applicable for Alpha Quality & further)
Second Reviewer
(applicable for Beta Quality & further)
OWASP Board Member
(applicable just for Release Quality)
50% Review Objectives & Deliveries reached?
Yes/No (To update)
---------
See&Edit:50% Review/Self-Evaluation (A)
Objectives & Deliveries reached?
Yes/No (To update)
---------
See&Edit: 50% Review/1st Reviewer (C)
Objectives & Deliveries reached?
Yes/No (To update)
---------
See&Edit: 50%Review/2nd Reviewer (E)
X
Final Review Objectives & Deliveries reached?
Yes/No (To update)
---------
Which status has been reached?
Season of Code - (To update)
---------
See&Edit: Final Review/SelfEvaluation (B)
Objectives & Deliveries reached?
Yes/No (To update)
---------
Which status has been reached?
Season of Code - (To update)
---------
See&Edit: Final Review/1st Reviewer (D)
Objectives & Deliveries reached?
Yes/No (To update)
---------
Which status has been reached?
Season of Code - (To update)
---------
See&Edit: Final Review/2nd Reviewer (F)
Objectives & Deliveries reached?
Yes/No (To update)
---------
Which status has been reached?
Season of Code - (To update)
---------
See/Edit: Final Review/Board Member (G)