Difference between revisions of "Project Information:template Testing Guide 3.0"

From OWASP
Jump to: navigation, search
(Added link to the Testing Guide V 3.0 Chinese Version)
 
(37 intermediate revisions by 3 users not shown)
Line 1: Line 1:
{| style="width:100%" border="0" align="center"
+
----
! colspan="8" align="center" style="background:#4058A0; color:white"|<font color="white">'''PROJECT IDENTIFICATION'''  
+
 
|-
+
{| border="0" align="center" style="width: 100%;"
| style="width:15%; background:#7B8ABD" align="center"|'''Project Name'''
+
|-
| colspan="7" style="width:85%; background:#cccccc" align="left"|<font color="black">''' OWASP Testing Guide V3.0 Project'''  
+
! align="center" style="background: rgb(64, 88, 160) none repeat scroll 0% 0%; -moz-background-clip: -moz-initial; -moz-background-origin: -moz-initial; -moz-background-inline-policy: -moz-initial; color: white;" colspan="8" | <font color="white">'''PROJECT INFORMATION'''</font>
|-
+
|-
| style="width:15%; background:#7B8ABD" align="center"| '''Short Project Description'''  
+
| align="center" style="background: rgb(123, 138, 189) none repeat scroll 0% 0%; width: 15%; -moz-background-clip: -moz-initial; -moz-background-origin: -moz-initial; -moz-background-inline-policy: -moz-initial;" | '''Project Name'''  
| colspan="7" style="width:85%; background:#cccccc" align="left"|The [http://www.lulu.com/content/1375886 OWASP Testing Guide V2.0] was a great success, with thousand downloads and many many Companies that have adopted it as standard for a Web Application Penetration Testing. Now it's time to begin a new project that is based on v2 but improve it and complete it. 
+
| align="left" style="background: rgb(204, 204, 204) none repeat scroll 0% 0%; width: 85%; -moz-background-clip: -moz-initial; -moz-background-origin: -moz-initial; -moz-background-inline-policy: -moz-initial;" colspan="7" | <font color="black">'''OWASP Testing Guide V3.0 Project'''</font>
|-
+
|-
| style="width:15%; background:#7B8ABD" align="center"|'''Key Project Information'''
+
| align="center" style="background: rgb(123, 138, 189) none repeat scroll 0% 0%; width: 15%; -moz-background-clip: -moz-initial; -moz-background-origin: -moz-initial; -moz-background-inline-policy: -moz-initial;" | '''Short Project Description'''  
| style="width:12%; background:#cccccc" align="center"|Licensed under<br>[http://creativecommons.org/licenses/by-sa/2.5/ '''Creative Commons Attribution‐ShareAlike 2.5''']
+
| align="left" style="background: rgb(204, 204, 204) none repeat scroll 0% 0%; width: 85%; -moz-background-clip: -moz-initial; -moz-background-origin: -moz-initial; -moz-background-inline-policy: -moz-initial;" colspan="7" | The OWASP Testing Guide includes a "best practice" penetration testing framework which users can implement in their own organizations and a "low level" penetration testing guide that describes techniques for testing most common web application and web service security issues.<br>
| style="width:12%; background:#cccccc" align="center"|Project Leader<br>[[User:Mmeucci|'''Matteo Meucci''']]
+
OWASP Testing Guide v3 is a 349 page book; we have split the set of active tests in 9 sub-categories for a total of 66 controls to test during the Web Application Testing activity.  
| style="width:12%; background:#cccccc" align="center"|Project Contributors<br>[mailto:to(at)change '''Name&Email''']
+
 
| style="width:12%; background:#cccccc" align="center"|Mailing List<br>[https://lists.owasp.org/mailman/listinfo/owasp-testing '''Subscribe here''']<br>[mailto:owasp-testing(at)lists.owasp.org '''Use here''']
+
|-
| style="width:12%; background:#cccccc" align="center"|Reviewers<br>[[User:Tbrennan|'''Tom Brennan''']]<br>[[User:Namn|'''Nam Nguyen''']]<br>[mailto:KFuller(at)dmv.ca.gov '''Kevin Fuller''']
+
| align="center" style="background: rgb(123, 138, 189) none repeat scroll 0% 0%; width: 15%; -moz-background-clip: -moz-initial; -moz-background-origin: -moz-initial; -moz-background-inline-policy: -moz-initial;" | '''Key Project Information'''  
| style="width:12%; background:#cccccc" align="center"|Project Type<br>[[:Category:OWASP_Project#Beta_Status_Projects|Documentation]]
+
| align="center" style="background: rgb(204, 204, 204) none repeat scroll 0% 0%; width: 14%; -moz-background-clip: -moz-initial; -moz-background-origin: -moz-initial; -moz-background-inline-policy: -moz-initial;" | Project Leader<br>[[User:Mmeucci|'''Matteo Meucci''']]  
| style="width:12%; background:#cccccc" align="center"|Sponsores<br>[[OWASP Summer of Code 2008|'''OWASP SoC 08''']]  
+
| align="center" style="background: rgb(204, 204, 204) none repeat scroll 0% 0%; width: 15%; -moz-background-clip: -moz-initial; -moz-background-origin: -moz-initial; -moz-background-inline-policy: -moz-initial;" | Project Contibutors<br>[[:OWASP Testing Guide Contributors|'''See here''']]  
|}
+
| align="center" style="background: rgb(204, 204, 204) none repeat scroll 0% 0%; width: 10%; -moz-background-clip: -moz-initial; -moz-background-origin: -moz-initial; -moz-background-inline-policy: -moz-initial;" | Mailing List<br>[https://lists.owasp.org/mailman/listinfo/owasp-testing '''Subscribe here''']<br>[mailto:owasp-testing(at)lists.owasp.org '''Use here''']  
{| style="width:100%" border="0" align="center"
+
| align="center" style="background: rgb(204, 204, 204) none repeat scroll 0% 0%; width: 17%; -moz-background-clip: -moz-initial; -moz-background-origin: -moz-initial; -moz-background-inline-policy: -moz-initial;" | License<br>[http://creativecommons.org/licenses/by-sa/3.0/ '''Creative Commons Attribution Share Alike 3.0''']  
! colspan="6" align="center" style="background:#4058A0; color:white"|<font color="white">'''PROJECT MAIN LINKS'''
+
| align="center" style="background: rgb(204, 204, 204) none repeat scroll 0% 0%; width: 14%; -moz-background-clip: -moz-initial; -moz-background-origin: -moz-initial; -moz-background-inline-policy: -moz-initial;" | Project Type<br>[[:Category:OWASP Project#Release_Quality_Projects|'''Documentation''']]  
|-
+
| align="center" style="background: rgb(204, 204, 204) none repeat scroll 0% 0%; width: 15%; -moz-background-clip: -moz-initial; -moz-background-origin: -moz-initial; -moz-background-inline-policy: -moz-initial;" | Sponsors<br>[[OWASP Summer of Code 2008|'''OWASP SoC 08''']]
| style="width:100%; background:#cccccc" align="center"|
+
|}
[http://www.owasp.org/images/2/2c/OWASP_EU_Summit_2008_OWASP_Testing_Guide_v3.ppt OWASP Testing Guide V 3.0 - PowerPoint Presentation]<br>[https://www.owasp.org/images/5/56/OWASP_Testing_Guide_v3.pdf OWASP Testing Guide V 3.0 - PDF]<br>[[:OWASP Testing Guide v3 Startup|Index brainstorming]]<br>[[:OWASP Testing Guide v3 Table of Contents|OWASP Testing Guide v3 Table of Contents]]<br>[[:OWASP Testing Project v3 Roadmap|OWASP Testing Project V3.0 Roadmap]]
+
 
* (If appropriate, links to be added)
+
{| border="0" align="center" style="width: 100%;"
|}
+
|-
{| style="width:100%" border="0" align="center"
+
! align="center" style="background: rgb(123, 138, 189) none repeat scroll 0% 0%; -moz-background-clip: -moz-initial; -moz-background-origin: -moz-initial; -moz-background-inline-policy: -moz-initial; color: white;" | <font color="black">'''Release Status'''</font>
! colspan="6" align="center" style="background:#4058A0; color:white"|<font color="white">'''RELATED PROJECTS'''  
+
! align="center" style="background: rgb(123, 138, 189) none repeat scroll 0% 0%; -moz-background-clip: -moz-initial; -moz-background-origin: -moz-initial; -moz-background-inline-policy: -moz-initial; color: white;" | <font color="black">'''Main Links'''</font>
|-
+
! align="center" style="background: rgb(123, 138, 189) none repeat scroll 0% 0%; -moz-background-clip: -moz-initial; -moz-background-origin: -moz-initial; -moz-background-inline-policy: -moz-initial; color: white;" | <font color="black">'''Related Projects'''</font>
| style="width:100%; background:#cccccc" align="center"|
+
|-
[http://www.lulu.com/content/1375886 OWASP Testing V 2.0]
+
| align="center" style="background: rgb(204, 204, 204) none repeat scroll 0% 0%; width: 29%; -moz-background-clip: -moz-initial; -moz-background-origin: -moz-initial; -moz-background-inline-policy: -moz-initial;" | '''[[:Category:OWASP Project Assessment#Release_Quality_Documentation_Criteria|Release Quality]]'''<br>[[:OWASP Testing Guide 3.0 - Assessment Frame|Please see here for complete information.]]  
|}
+
| align="center" style="background: rgb(204, 204, 204) none repeat scroll 0% 0%; width: 42%; -moz-background-clip: -moz-initial; -moz-background-origin: -moz-initial; -moz-background-inline-policy: -moz-initial;" |
{| style="width:100%" border="0" align="center"
+
OWASP Testing Guide V 3.0 - [https://www.owasp.org/images/4/4d/OWASP_Testing_Guide_V3.doc Word] &amp; [https://www.owasp.org/images/8/89/OWASP_Testing_Guide_V3.pdf PDF] Files - NEW RELEASE!!!
! colspan="6" align="center" style="background:#4058A0; color:white"|<font color="white">'''SPONSORS & GUIDELINES'''  
+
 
|-
+
Spanish Version in [http://www.owasp.org/images/d/d7/Gu%C3%ADa_de_pruebas_de_OWASP_ver_3.0.zip Word] &amp; [http://www.owasp.org/images/8/80/Gu%C3%ADa_de_pruebas_de_OWASP_ver_3.0.pdf PDF]<br> Chinese Version in [http://www.owasp.org/images/0/06/OWASP%E6%B5%8B%E8%AF%95%E6%8C%87%E5%8D%97%28%E4%B8%AD%E6%96%87%EF%BC%89.pdf PDF]<br>About OWASP Testing Guide V 3.0: [http://www.owasp.org/images/2/2c/OWASP_EU_Summit_2008_OWASP_Testing_Guide_v3.ppt PowerPoint]<br>[[:OWASP Testing Guide v3 Table of Contents|OWASP Testing Guide v3 Table of Contents]]  
| style="width:50%; background:#cccccc" align="center"|[[OWASP Summer of Code 2008|Sponsor - '''OWASP Summer of Code 2008''']]
+
 
| style="width:50%; background:#cccccc" align="center"|[[OWASP Testing Project v3 Roadmap|'''Sponsored Project/Guidelines/Roadmap''']]
+
| align="center" style="background: rgb(204, 204, 204) none repeat scroll 0% 0%; width: 29%; -moz-background-clip: -moz-initial; -moz-background-origin: -moz-initial; -moz-background-inline-policy: -moz-initial;" |
|}
+
[[:Image:OWASP Testing Guide v2 pdf.zip|OWASP Testing V 2.0]]<br>[[:Category:OWASP Guide Project|OWASP Development Guide Project]]<br>[[:Category:OWASP Code Review Project|OWASP Code Review Project]]<br>[[:Category:OWASP ASDR Project|OWASP ASDR Project]]  
{| style="width:100%" border="0" align="center"
+
 
! colspan="5" align="center" style="background:#4058A0; color:white"|ASSESSMENT AND REVIEW PROCESS
+
|}
|-
+
 
| style="width:15%; background:#6C82B5" align="center"|'''Review/Reviewer'''
+
----
| style="width:21%; background:#b3b3b3" align="center"|'''Author's Self Evaluation'''<br>(applicable for Alpha Quality & further)
+
| style="width:21%; background:#b3b3b3" align="center"|'''First Reviewer'''<br>(applicable for Alpha Quality & further)
+
| style="width:21%; background:#b3b3b3" align="center"|'''Second Reviewer'''<br>(applicable for Beta Quality & further)
+
| style="width:22%; background:#b3b3b3" align="center"|'''OWASP Board Member'''<br>(applicable just for Release Quality)  
+
|-
+
| style="width:15%; background:#7B8ABD" align="center"|'''50% Review'''
+
| style="width:21%; background:#C2C2C2" align="center"|Objectives & Deliveries reached?<br>'''Yes'''<br>---------<br>[[Project Information:template Testing Guide 3.0 - 50 Review - Self Evaluation - A|See&Edit:50% Review/Self-Evaluation (A)]]
+
| style="width:21%; background:#C2C2C2" align="center"|Objectives & Deliveries reached?<br>'''Yes'''<br>---------<br>[[Project Information:template Testing Guide 3.0 - 50 Review - First Reviewer - C|See&Edit: 50% Review/1st Reviewer (C)]]
+
| style="width:21%; background:#C2C2C2" align="center"|Objectives & Deliveries reached?<br>'''Yes'''<br>---------<br>[[Project Information:template Testing Guide 3.0 50 Review Second Review E|See&Edit: 50%Review/2nd Reviewer (E)]]
+
| style="width:22%; background:#C2C2C2" align="center"|X
+
|-
+
| style="width:15%; background:#7B8ABD" align="center"|'''Final Review'''
+
| style="width:21%; background:#C2C2C2" align="center"|Objectives & Deliveries reached?<br>'''Yes/No''' (To update)<br>---------<br>Which status has been reached?<br>'''Season of Code''' - (To update)<br>---------<br>[[Project Information:template Testing Guide 3.0 - Final Review - Self Evaluation - B|See&Edit: Final Review/SelfEvaluation (B)]]
+
| style="width:21%; background:#C2C2C2" align="center"|Objectives & Deliveries reached?<br>'''Yes/No''' (To update)<br>---------<br>Which status has been reached?<br>'''Season of Code''' - (To update)<br>---------<br>[[Project Information:template Testing Guide 3.0 - Final Review - First Reviewer - D|See&Edit: Final Review/1st Reviewer (D)]]
+
| style="width:21%; background:#C2C2C2" align="center"|Objectives & Deliveries reached?<br>'''Yes/No''' (To update)<br>---------<br>Which status has been reached?<br>'''Season of Code''' - (To update)<br>---------<br>[[Project Information:template Testing Guide 3.0 - Final Review - Second Reviewer - F|See&Edit: Final Review/2nd Reviewer (F)]]
+
| style="width:22%; background:#C2C2C2" align="center"|Objectives & Deliveries reached?<br>'''Yes/No''' (To update)<br>---------<br>Which status has been reached?<br>'''Season of Code''' - (To update)<br>---------<br>[[Project Information:template Testing Guide 3.0 - Final Review - OWASP Board Member - G|See/Edit: Final Review/Board Member (G)]]
+
|-
+
|}
+

Latest revision as of 10:12, 27 January 2010


PROJECT INFORMATION
Project Name OWASP Testing Guide V3.0 Project
Short Project Description The OWASP Testing Guide includes a "best practice" penetration testing framework which users can implement in their own organizations and a "low level" penetration testing guide that describes techniques for testing most common web application and web service security issues.

OWASP Testing Guide v3 is a 349 page book; we have split the set of active tests in 9 sub-categories for a total of 66 controls to test during the Web Application Testing activity.

Key Project Information Project Leader
Matteo Meucci
Project Contibutors
See here
Mailing List
Subscribe here
Use here
License
Creative Commons Attribution Share Alike 3.0
Project Type
Documentation
Sponsors
OWASP SoC 08
Release Status Main Links Related Projects
Release Quality
Please see here for complete information.

OWASP Testing Guide V 3.0 - Word & PDF Files - NEW RELEASE!!!

Spanish Version in Word & PDF
Chinese Version in PDF
About OWASP Testing Guide V 3.0: PowerPoint
OWASP Testing Guide v3 Table of Contents

OWASP Testing V 2.0
OWASP Development Guide Project
OWASP Code Review Project
OWASP ASDR Project