Difference between revisions of "Project Information:template SKAVENGER"

From OWASP
Jump to: navigation, search
m (RM - Minor correction "year" not "your")
 
(41 intermediate revisions by 4 users not shown)
Line 1: Line 1:
 
{| style="width:100%" border="0" align="center"
 
{| style="width:100%" border="0" align="center"
  ! colspan="7" align="center" style="background:#4058A0; color:white"|<font color="white">'''PROJECT IDENTIFICATION'''  
+
  ! colspan="8" align="center" style="background:#4058A0; color:white"|<font color="white">'''PROJECT IDENTIFICATION'''  
 
  |-
 
  |-
 
  | style="width:15%; background:#7B8ABD" align="center"|'''Project Name'''
 
  | style="width:15%; background:#7B8ABD" align="center"|'''Project Name'''
  | colspan="6" style="width:85%; background:#cccccc" align="left"|<font color="black">'''SKAVENGER'''  
+
  | colspan="7" style="width:85%; background:#cccccc" align="left"|<font color="black">'''OWASP Skavenger Project'''  
 
  |-
 
  |-
  | style="width:15%; background:#7B8ABD" align="center"| '''Short project description'''  
+
  | style="width:15%; background:#7B8ABD" align="center"| '''Short Project Description'''  
  | colspan="6" style="width:85%; background:#cccccc" align="left"|Skavenger is a web application security assessment toolkit which arised from many years of professional experience in the web application assessment field and is the result of nearly one your of work. It passively analyzes traffic logged by various MITM proxies (such as WebScarab and Burp) as well as other sources (like Firefox's LiveHTTPHeader plugin) and helps to identify various kinds of possible vulnerabilities (such as XSS, CRLF injection, an insecure session management and several kinds of information disclosure). Skavenger's modular design allows the integration of custom scanning modules without any knowledge about the tool at all.  
+
  | colspan="7" style="width:85%; background:#cccccc" align="left"|
 +
Skavenger is a web application security assessment toolkit which arised from many years of professional experience in the web application assessment field and is the result of nearly one year of work. It passively analyzes traffic logged by various MITM proxies (such as WebScarab and Burp) as well as other sources (like Firefox's LiveHTTPHeader plugin) and helps to identify various kinds of possible vulnerabilities (such as XSS, CRLF injection, an insecure session management and several kinds of information disclosure). Skavenger's modular design allows the integration of custom scanning modules without any knowledge about the tool at all.  
 
  |-
 
  |-
  | style="width:15%; background:#7B8ABD" align="center"|'''Email contacts'''
+
  | style="width:15%; background:#7B8ABD" align="center"|'''Key Project Information'''
  | style="width:14%; background:#cccccc" align="center"|Project leader<br>[mailto:mro(at)securenet.de '''Matthias Rohr''']
+
  | style="width:14%; background:#cccccc" align="center"|Project Leader<br>[[User:Mrohr|'''Matthias Rohr''']]
  | style="width:14%; background:#cccccc" align="center"|Project Contributors<br>[mailto:to(at)change '''Name&Email''']<br>[mailto:to(at)change '''Name&Email''']
+
  | style="width:16%; background:#cccccc" align="center"|Project Contributors<br>(if any)  
  | style="width:14%; background:#cccccc" align="center"|[mailto:to(at)change '''Project mailing list''']
+
  | style="width:10%; background:#cccccc" align="center"|Mailing list<br>[https://lists.owasp.org/mailman/listinfo/owasp-skavenger '''Subscribe here''']<br>[mailto:Owasp-skavenger@lists.owasp.org '''Use here''']
| style="width:14%; background:#cccccc" align="center"|First Reviewer<br>[mailto:to(at)change '''Rogan Dawes''']
+
| style="width:16%; background:#cccccc" align="center"|
  | style="width:14%; background:#cccccc" align="center"|Second Reviewer<br>[mailto:ah@securenet.de '''Achim Hoffmann''']
+
License<br>[http://sourceforge.net/softwaremap/trove_list.php?form_cat=15 '''GNU General Public License''']
  | style="width:15%; background:#cccccc" align="center"|OWASP Board Member<br>Non applicable
+
  | style="width:14%; background:#cccccc" align="center"|
 +
Project Type<br>[[:Category:OWASP_Project#Beta Status Projects|'''Tool''']]
 +
  | style="width:15%; background:#cccccc" align="center"|Sponsor<br>[[OWASP Summer of Code 2008|'''OWASP SoC 08''']]
 
  |}
 
  |}
{| style="width:100%" border="0" align="center"
+
{| style="width:100%" border="0" align="center"  
  ! colspan="6" align="center" style="background:#4058A0; color:white"|<font color="white">'''PROJECT MAIN LINKS'''  
+
  ! align="center" style="background:#7B8ABD; color:white"|<font color="black">'''Release Status'''
 +
! align="center" style="background:#7B8ABD; color:white"|<font color="black">'''Main Links'''
 +
! align="center" style="background:#7B8ABD; color:white"|<font color="black">'''Related Projects'''  
 
  |-
 
  |-
  | style="width:100%; background:#cccccc" align="center"|
+
  | style="width:29%; background:#cccccc" align="center"|
* Skavenger is completely written in Perl and can be downloaded from [https://sourceforge.net/projects/skavenger/ Skavenger.]
+
'''[[:Category:OWASP Project Assessment#Beta Quality Tool Criteria|Beta Quality]]'''<br>[[:Category:OWASP Skavenger Project - Assessment Frame|Please see here for complete information.]]
* (If appropriate, links to be added)
+
| style="width:42%; background:#cccccc" align="center"|
 +
The tool is written in C# with .NET 2.0 WinForms (for the  GUI) as well as Perl (for the CLI) and can be downloaded from [https://sourceforge.net/projects/skavenger/ sourceforge.net]
 +
| style="width:29%; background:#cccccc" align="center"|
 +
[[OWASP WebScarab Project]]<br />
 +
[[OWASP WebGoat Project]]<br />
 +
[[OWASP Testing Guide]]
 
  |}
 
  |}
{| style="width:100%" border="0" align="center"
+
----
! colspan="6" align="center" style="background:#4058A0; color:white"|<font color="white">'''SPONSORS & GUIDELINES'''
+
|-
+
| style="width:50%; background:#cccccc" align="center"|[[OWASP Summer of Code 2008|Sponsor - '''OWASP Summer of Code 2008''']]
+
| style="width:50%; background:#cccccc" align="center"|[[OWASP Summer of Code 2008 Applications - Need Futher Clarifications#Skavenger|'''Sponsored Project/Guidelines/Roadmap''']]
+
|}
+
{| style="width:100%" border="0" align="center"
+
! colspan="5" align="center" style="background:#4058A0; color:white"|ASSESSMENT AND REVIEW PROCESS
+
|-
+
| style="width:15%; background:#7B8ABD" align="center"|
+
| style="width:21%; background:#C2C2C2" align="center"|'''Author's Self Evaluation'''
+
| style="width:21%; background:#C2C2C2" align="center"|'''First Reviewer'''
+
| style="width:21%; background:#C2C2C2" align="center"|'''Second Reviewer'''
+
| style="width:22%; background:#C2C2C2" align="center"|'''OWASP Board Member'''
+
|-
+
| style="width:15%; background:#7B8ABD" align="center"|'''50% Review'''
+
| style="width:21%; background:#C2C2C2" align="center"|Objectives & Deliveries Reached?<br>'''YES/NO''' (To update)<br>[[Project Information:template SKAVENGER 50 Review Self Evaluation A|See/Edit Self-Evaluation (A)]]
+
| style="width:21%; background:#C2C2C2" align="center"|Objectives & Deliveries Reached?<br>'''YES/NO''' (To update)<br>[[Project Information:template SKAVENGER 50 Review First Review C|See/Edit First Review (C)]]
+
| style="width:21%; background:#C2C2C2" align="center"|Objectives & Deliveries Reached?<br>'''YES/NO''' (To update)<br>[[Project Information:template SKAVENGER 50 Review Second Review E|See/Edit Second Review (E)]]
+
| style="width:22%; background:#C2C2C2" align="center"|Non applicable
+
|-
+
| style="width:15%; background:#7B8ABD" align="center"|'''Final Review'''
+
| style="width:21%; background:#C2C2C2" align="center"|Objectives & Deliveries Reached?<br>'''YES/NO''' (To update)<br>What Status has been reached?<br>'''Season of Code''' - (To update)<br>[[Project Information:template SKAVENGER Final Review Self Evaluation B|See/Edit Self-Evaluation (B)]]
+
| style="width:21%; background:#C2C2C2" align="center"|Objectives & Deliveries Reached?<br>'''YES/NO''' (To update)<br>'''Season of Code''' - (To update)<br>[[:Project Information:template SKAVENGER Final Review First Reviewer D|See/Edit First Review (D)]]
+
| style="width:21%; background:#C2C2C2" align="center"|Objectives & Deliveries Reached?<br>'''YES/NO''' (To update)<br>'''Season of Code''' - (To update)<br>See/Edit Second Review (F)
+
| style="width:22%; background:#C2C2C2" align="center"|Non applicable
+
|-
+
|}
+
 
+
 
+
 
+
[[Category:OWASP Project]]
+

Latest revision as of 08:37, 12 February 2010

PROJECT IDENTIFICATION
Project Name OWASP Skavenger Project
Short Project Description

Skavenger is a web application security assessment toolkit which arised from many years of professional experience in the web application assessment field and is the result of nearly one year of work. It passively analyzes traffic logged by various MITM proxies (such as WebScarab and Burp) as well as other sources (like Firefox's LiveHTTPHeader plugin) and helps to identify various kinds of possible vulnerabilities (such as XSS, CRLF injection, an insecure session management and several kinds of information disclosure). Skavenger's modular design allows the integration of custom scanning modules without any knowledge about the tool at all.

Key Project Information Project Leader
Matthias Rohr
Project Contributors
(if any)
Mailing list
Subscribe here
Use here

License
GNU General Public License

Project Type
Tool

Sponsor
OWASP SoC 08
Release Status Main Links Related Projects

Beta Quality
Please see here for complete information.

The tool is written in C# with .NET 2.0 WinForms (for the GUI) as well as Perl (for the CLI) and can be downloaded from sourceforge.net

OWASP WebScarab Project
OWASP WebGoat Project
OWASP Testing Guide