Projects Summit 2013/Projects Participating
What OWASP Projects Will Be at the Summit?
This year we have ten projects participating in the OWASP Project Summit event module.
The AppSensor project defines a conceptual framework and methodology that offers prescriptive guidance to implement intrusion detection and automated response into an existing application. Current efforts are underway to create the AppSensor tool which can be utilized by any existing application interested in adding detection and response capabilities. More about OWASP AppSensor here.
OWASP Code Review Guide
The Code Review Guide focuses on secure code reviews and tools that aim to support the developer community. Such an activity is very powerful as it gives the developer community a place to start regarding secure application development. More about OWASP Code Review here.
OWASP Development Guide
The Development Guide is aimed at architects, developers, consultants and auditors and is a comprehensive manual for designing, developing and deploying secure Web Applications and Web Services. The OWASP Developer Guide 2013 aims to focus the content from countermeasures and weaknesses to secure software engineering. More about the OWASP Development Guide OWASP Development Guide here.
The OWASP Education Projects
The OWASP Education project is meant to centralize all educational initiatives of OWASP. The project will not deliver education material as such, but define standards and guidelines on education material. Furthermore, this project aims to create an easy entrance towards understanding application security and usage of the OWASP tooling. By creating education documentation papers, screen scrape video courses, and setting up an OWASP Boot camp, a controlled education process of a standardized quality can be created continuously.
Initiatives of the OWASP Education Project are:
OWASP Boot Camp OWASP Training Events
OWASP Academy Portal OWASP University Outreach OWASP Student Chapter
OWASP Enterprise Security API
ESAPI (The OWASP Enterprise Security API) is a free, open source, web application security control library that makes it easier for programmers to write lower-risk applications. The ESAPI libraries are designed to make it easier for programmers to retrofit security into existing applications. More about OWASP Enterprise Security API here.
OWASP 02 Project
The O2 platform represents a new paradigm for how to perform, document, and distribute Web Application security reviews. O2 is designed to Automate Application Security Knowledge and Workflows, and to Allow non-security experts to access and consume Security Knowledge. More about OWASP O2 Platform here.