Difference between revisions of "Projects/OWASP ESOP Framework"

From OWASP
Jump to: navigation, search
 
(4 intermediate revisions by one user not shown)
Line 1: Line 1:
{{Template:Project About
+
{{Template:<includeonly>{{{1}}}</includeonly><noinclude>Project About</noinclude>
 
| project_name = OWASP Enhancing Security Options Framework (ESOP Framework)
 
| project_name = OWASP Enhancing Security Options Framework (ESOP Framework)
| project_home_page =
+
 
| project_description =
+
| project_home_page = OWASP ESOP Framework
| project_license =
+
 
 +
| project_description = Purpose of the framework is to provide a security layer to a given web application / web site via web service which can use the functions / modules to protect the site from following vulnerabilities:
 +
#Remote code execution
 +
#SQL injection
 +
#Format string vulnerabilities
 +
#Cross Site Scripting (XSS)
 +
#Session hacking
 +
#Denial of service (DoS) attacks
 +
#Eavesdropping /Sniffing/ Phishing
 +
#Identity Spoofing
 +
#Man-in-the-Middle Attacks
 +
#Username enumeration
 +
##Instrumentation & Audits for:
 +
##Critical Business Areas
 +
##User Management
 +
##Un-usual activities
 +
##Interfaces Integrations
 +
#IIS Tweaks
 +
#Password Policy
 +
 
 +
 
 +
| project_license = [http://www.gnu.org/licenses/gpl.html GNU GPL V3.0]
 +
 
 
| leader_name1 = Amber Marfatia
 
| leader_name1 = Amber Marfatia
| leader_email1 =
+
| leader_email1 = amber.marfatia@owasp.org
 
| leader_username1 = Amber Marfatia
 
| leader_username1 = Amber Marfatia
 +
 
| contributor_name[1-10] =  
 
| contributor_name[1-10] =  
 
| contributor_email[1-10] =  
 
| contributor_email[1-10] =  
 
| contributor_username[1-10] =  
 
| contributor_username[1-10] =  
 +
 
| pamphlet_link =  
 
| pamphlet_link =  
 +
 
| presentation_link =
 
| presentation_link =
| mailing_list_name =  
+
 
| project_road_map =  
+
| mailing_list_name = https://lists.owasp.org/mailman/listinfo/owasp-esop-framework
 +
 
 +
| project_road_map = http://www.owasp.org/index.php/OWASP_ESOP_Framework/Roadmap
 +
 
 
| links_url[1-10] =  
 
| links_url[1-10] =  
 
| links_name[1-10] =  
 
| links_name[1-10] =  
| release_1 =  
+
 
 +
| release_1 = To be created still
 
| release_2 =  
 
| release_2 =  
 
| release_3 =
 
| release_3 =
 
| release_4 =
 
| release_4 =
 +
<!--- The line below is for GPC usage only. Please do not edit it --->
 +
| project_about_page = Projects/OWASP ESOP Framework
 
}}
 
}}

Latest revision as of 13:49, 18 April 2011

PROJECT INFO
What does this OWASP project offer you?
RELEASE(S) INFO
What releases are available for this project?
what is this project?
Name: OWASP Enhancing Security Options Framework (ESOP Framework) (home page)
Purpose: Purpose of the framework is to provide a security layer to a given web application / web site via web service which can use the functions / modules to protect the site from following vulnerabilities:
  1. Remote code execution
  2. SQL injection
  3. Format string vulnerabilities
  4. Cross Site Scripting (XSS)
  5. Session hacking
  6. Denial of service (DoS) attacks
  7. Eavesdropping /Sniffing/ Phishing
  8. Identity Spoofing
  9. Man-in-the-Middle Attacks
  10. Username enumeration
    1. Instrumentation & Audits for:
    2. Critical Business Areas
    3. User Management
    4. Un-usual activities
    5. Interfaces Integrations
  11. IIS Tweaks
  12. Password Policy
License: GNU GPL V3.0
who is working on this project?
Project Leader(s):
how can you learn more?
Project Pamphlet: Not Yet Created
Project Presentation:
Mailing list: Mailing List Archives
Project Roadmap: View
Key Contacts
  • Contact the GPC to report a problem or concern about this project or to update information.
current release
Release Road Map for the ESOP Framework:

1. Wave 1: Documentation and Wireframe of the service framework
2. Wave 2: Class and design diagram framework
3. Wave 3: Development of the framework
    1. Application layer development
    2. Data layer development
4. Wave 4: Integration
5. Wave 5: Alpha Testing
6. Wave 6: Beta Testing
7. Release & Publish
4. Project links (if any) to external sites: N.A.
5. Project License: GNU GPL V3.0

last reviewed release
Not Yet Reviewed


other releases