Difference between revisions of "Projects/OWASP GoatDroid Project"

From OWASP
Jump to: navigation, search
m
Line 3: Line 3:
 
| project_home_page = OWASP_Mobile_Security_Project
 
| project_home_page = OWASP_Mobile_Security_Project
 
| project_description =  
 
| project_description =  
*The OWASP GoatDroid Project pays homage to the OWASP WebGoat Project. It is a fully functional and self-contained environment for learning more about vulnerabilities and security issues for the Android platform.
+
*The OWASP GoatDroid Project is a fully functional and self-contained environment for learning about Android security.
*The initial release is of alpha-level maturity and contains a fully functional functional RESTful web service and an Android application to get started. Future releases will add new applications and services, and will expand upon the current codebase to provide new and increasingly difficult to discover security flaws.
+
*GoatDroid requires minimal dependencies, and is ideal for both Android beginners as well as more advanced users. The project currently includes two applications: FourGoats, a location based social network, and Herd Financial, a mobile banking application.
*The entire application and framework is Java based. There is no need to install an external web server or container. Each web service runs on embedded Jetty instances and uses the Jersey implementation of JAX-RS.
+
*As the Android SDK provides new features, the GoatDroid contributors will strive to implement up-to-date lessons that can educate developers and security testers on these problems. Contributors will always be needed for this project, so if you are interested please contact the project's leaders or the OWASP Mobile Security mailing list.
*In the first release, solutions will not be provided. You are encouraged to figure out where the holes are and determine the best way to mitigate them. The next release will include the solutions for version 1.
+
*You can currently download the project via Google Code: http://code.google.com/p/owasp-goatdroid/
*You can download the project via Google Code: http://code.google.com/p/owasp-goatdroid/
+
*As of the GoatDroid 1.0 release, the project will be maintained on GitHub: https://github.com/jackMannino/OWASP-GoatDroid-Project
 
   
 
   
 
| project_license =
 
| project_license =
Line 18: Line 18:
 
| leader_email[2-10] =  
 
| leader_email[2-10] =  
 
| leader_username[2-10] =  
 
| leader_username[2-10] =  
 
| contributor_name1 = Gunnar Peterson
 
| contributor_email1 =
 
| contributor_username1 =
 
 
| contributor_name2 = John Steven
 
| contributor_email2 =  john.steven@owasp.org
 
| contributor_username2 = John Steven
 
  
 
| pamphlet_link =  
 
| pamphlet_link =  

Revision as of 23:25, 30 June 2012

PROJECT INFO
What does this OWASP project offer you?
RELEASE(S) INFO
What releases are available for this project?
what is this project?
Name: OWASP GoatDroid Project (home page)
Purpose:
  • The OWASP GoatDroid Project is a fully functional and self-contained environment for learning about Android security.
  • GoatDroid requires minimal dependencies, and is ideal for both Android beginners as well as more advanced users. The project currently includes two applications: FourGoats, a location based social network, and Herd Financial, a mobile banking application.
  • As the Android SDK provides new features, the GoatDroid contributors will strive to implement up-to-date lessons that can educate developers and security testers on these problems. Contributors will always be needed for this project, so if you are interested please contact the project's leaders or the OWASP Mobile Security mailing list.
  • You can currently download the project via Google Code: http://code.google.com/p/owasp-goatdroid/
  • As of the GoatDroid 1.0 release, the project will be maintained on GitHub: https://github.com/jackMannino/OWASP-GoatDroid-Project
License: N/A
who is working on this project?
Project Leader(s):
how can you learn more?
Project Pamphlet: Not Yet Created
Project Presentation:
Mailing list: Mailing List Archives
Project Roadmap: View
Key Contacts
  • Contact the GPC to report a problem or concern about this project or to update information.
current release
Not Yet Published
last reviewed release
Not Yet Reviewed


other releases