OWASP Projects Dashboard 2.0/By Set Up Order

From OWASP

Jump to: navigation, search

Project	Leader(s)	Contributor(s)
Security Ecosystem Project	Jeff Williams @	This project is currently seeking volunteers. If you are interested please contact us through the mailing list.
OWASP RFP-Criteria	Tom Brennan @	N/A
Owasp Esapi Ruby	Paolo Perego @	Kuai Hinojosa @ Sal Scotto @ Paco Schiaffella @
OWASP Application Security Program for Manager	Matteo Meucci @	Marco Morana @ Giorgio Fedon @ Stefano di Paola @
OWASP JavaScript Sandboxes	Gareth Heyes @	Eduardo Vela Mario Heiderich
JSReg	Gareth Heyes @	N/A
HTMLReg	Gareth Heyes @	N/A
OWASP Testing Project	Matteo Meucci @	N/A
OWASP Related Commercial Services	Eoin Keary @	N/A
OWASP Development Guide	Vishal Garg @	Andrew van der Stock @ Ken Owen @
OWASP Application Security Verification Standard Project	Sahba Kazerooni @ Daniel Cuthbert @	Dave Wichers @ Jeff Williams @ Mike Boberski
OWASP Code Review Project	Eoin Keary @	N/A
OWASP ModSecurity Core Rule Set Project	Ryan Barnett @	Breno Silva
OWASP Alchemist Project	Naveen Rudrappa @ Chandrakanth Reddy Narreddy @ Bishan Singh @	N/A
OWASP Secure Coding Practices - Quick Reference Guide	Keith Turpin @	Dan Kranz Walt Pietrowski Catherine Spencer Caleb McGary @ Jim Manico @ Brad Causey @ Ludovic Petit @ Michael V. Scovetta @ Jason Coleman Tarcizio Vieira Neto
OWASP Student Chapters Program	Martin Knobloch @ Edward Bonver @	N/A
OWASP CTF Project	Steven van der Baan @	Martin Knobloch @ Brad Causey @ Ralf Allar @ Andres Riancho @
OWASP Enterprise Application Security Project	Alexander Polyakov @	Dmitriy Evdokimov @ Dmitriy Chastuhin @ Alexey Sintsov @ Michail Markevich
OWASP Browser Security Project	N/A	N/A
OWASP Uniform Reporting Guidelines	Vlad Gostomelsky @	N/A
OWASP Secure Web Application Framework Manifesto	Rohit Sethi @ Yuk Fai Chan @	Tom Aratyn @ Sahba Kazerooni @ Patrick Szeto @
OWASP Mobile Security Project	Jack Mannino (Overall Project Leader) @ Mike Zusman (Mobile Cheat Sheet Leader) @ Zach Lanier @ Giles Hogben (Mobile Controls Leader) @ Vinay Bansal (Mobile Controls Leader) @ Sarath Geethakumar (Mobile Device Management) @	David Lindner @ Jim Manico @ Tom Neaves @ Kuai Hinojosa @ Zach Lanier @ Ludovic Petit @ Zaki Akhmad @ Christian Papathanasiou @ Swapnil Deshmukh @
OWASP O2 Platform Project	Dinis Cruz @	N/A
OWASP Zed Attack Proxy Project	Psiinon @ Axel Neumann @	N/A
OWASP AppSensor Project	Michael Coates @ John Melton @ Colin Watson @	Ryan Barnett @ Simon Bennetts August Detlefsen Randy Janida Jim Manico @ Giri Nambari Eric Sheridan Kevin Wall Dennis Groves
OWASP JBroFuzz Project	Ranulf Green @	Yiannis Pavlosoglou @ Markus Miedaner @
OWASP Watcher Project	Chris Weber @	N/A
OWASP X5s Project	Chris Weber @	N/A
OWASP Application Security Skills Assessment	Neil Smithline @	N/A
OWASP Common Numbering Project	Dave Wichers (ASVS) @	Jeff Williams (ASVS) @ Vishal Garg (Development Guide) @ Eoin Keary (Code Review Guide) @ Matteo Meucci (Testing Guide) @ Keith Turpin (Secure Coding Quick Reference) @ Brad Causey (Global Projects Commitee) @ Rick Mitchell
OWASP HTTP Post Tool	Tom Brenann @	N/A
OWASP Forward Exploit Tool Project	Marcos Mateos Garcia @	N/A
OWASP Java XML Templates Project	Jeff Ichnowski @	N/A
OWASP ASIDE Project	Jing Xie @ Bill Chu @ John Melton @	N/A
OWASP Secure Password Project	Josh Sokol @	James Wickett @ Matt Tesauro @ Ben Broussard @ Genung Gregory @
OWASP Secure the Flag Competition Project	Mark Bristow @	N/A
OWASP Security Baseline Project	Marian Ventuneac @	N/A
OWASP ESAPI Objective - C Project	Deepak Subramanian @	N/A
OWASP Academy Portal Project	Martin Knobloch @ Ricardo Melo @ Konstantinos Papapanagiotou @	Vasileos Vlachos @ Jim Burkman @ Andreas Fuchsberger @ Jason Taylor @ Carlos Serrão @ Filipe Lacerda @ Ed Adams @ Dinis Cruz @
OWASP Exams Project	Jason Taylor @	N/A
OWASP Portuguese Language Project	Lucas Ferreira @ Carlos Serrão @	N/A
OWASP Browser Security ACID Tests Project	Dave Wichers (as coproject manager) @ John Wilander (as coproject manager) @ David Lindsay (as technical lead) @	Isaac Dawson @
OWASP Web Browser Testing System Project	Isaac Dawson @	N/A
OWASP Java Project	Matthias Rohr @	N/A
OWASP Myth Breakers Project	Stefano Di Paola @ Dinis Cruz @	N/A
OWASP LAPSE Project	Pablo Martín Pérez @ José María Sierra Cámara @	Ben Livshits (former lead, non-active)
OWASP Software Security Assurance Process	Mateo Martínez @	N/A
OWASP Enhancing Security Options Framework (ESOP Framework)	Amber Marfatia @	N/A
OWASP German Language Project	Matthias Rohr @	N/A
OWASP Mantra - Security Framework	Abhi M BalaKrishnan @	N/A Main Use the Java Encoder Project Build the Java Encoder Project Welcome to the OWASP Java Encoder Project Contextual Output Encoding is a computer programming technique necessary to stop [Cross Site Scripting]. This project is a Java 1.5 simple-to-use drop-in high-performance encoder class with little baggage.
OWASP Java Encoder Project	Jeff Ichnowski @	Jim Manico @ The general API pattern to utilize the Java Encoder Project is "Encode.forContextName(untrustedData)", where "ContextName" is the name of the target context and "untrustedData" in untrusted user input. For example, to use in a JSP <input type="text" name="data" value="<%= Encode.forHtmlAttribute(dataValue) %>" /> <textarea name="text"><%= Encode.forHtmlContent(textValue) %>" /> Generally Encode.forHtml(...) is safe but slightly less efficient for the above two contexts (since it encodes more characters than necessary). For JavaScript string data <button onclick="alert('<%= Encode.forJavaScriptAttribute(alertMsg) %>');">click me</button> <script type="text/javascript"> var msg = "<%= Encode.forJavaScriptBlock(message) %>"; alert(msg); </script> Again generally Encode.forJavaScript is safe for the above two context, but slightly less efficient since it encodes more characters. Other Contexts Other contexts can be found in the org.owasp.Encode class methods, including CSS strings, CSS urls, XML contexts, URIs and URI components. checkout and run "mvn package" (using maven 2.0 or 3.0)
OWASP WebScarab NG Project	Daniel Brzozowski @	Rogan Dawes (Past Contributor) @
OWASP Threat Modelling Project	Anurag Agarwal @	N/A
OWASP Application Security Assessment Standards Project	Matteo Michelini @	N/A
OWASP Hackademic Challenges Project	Anastasios Stasinopoulos @ Konstantinos Papapanagiotou @	Andreas Venieris (Core Developer) @ Alex Papanikolaou @ Vasileios Vlachos @
OWASP Hatkit Proxy Project	Martin Holst Swende @	N/A
OWASP Hatkit Datafiddler Project	Martin Holst Swende @	N/A
OWASP ESAPI Swingset Interactive Project	Fabio Cerullo @ Cathal Courtney @	N/A
OWASP ESAPI Swingset Demo Project	Craig Younkins @	N/A
OWASP Web Application Security Accessibility Project	Petr Závodský @	Jan Meszáros Tomáš Bakos Jakub Tomšej TEREZA
OWASP Cloud ‐ 10 Project	Vinay Bansal @ Shankar Babu Chebrolu @ Pankaj Telang Ken Huang Ove Hansen	Ludovic Petit @
OWASP Web Testing Environment Project	Matt Tesauro @	David Hughes @ Brad Causey @ Nishi Kumar @ Drew Beebe @
OWASP iGoat Project	Kenneth R. van Wyk @	Sean Eidemiller (KRvW Associates) @
Opa	Henri Binsztok @ Adam Koprowski @	N/A
OWASP Mobile Security Project - Mobile Threat Model	N/A	N/A
OWASP Codes of Conduct	Colin Watson @	Jeff Williams @ Dave Wichers @ Dinis Cruz @
The OWASP "Green Book"	Colin Watson @	Jeff Williams @ Dave Wichers @ Dinis Cruz @ Mateo Martinez @
The OWASP "Blue Book"	Colin Watson @	Jeff Williams @ Dave Wichers @ Dinis Cruz @ Mateo Martinez @
The OWASP "Yellow Book"	Colin Watson @	Jeff Williams @ Dave Wichers @ Dinis Cruz @ Mateo Martinez @
The OWASP "Purple Book"	Colin Watson @	Mateo Martinez @
The OWASP "Red Book"	Colin Watson @	Jason Taylor @ Jason Li @ Martin Knobloch @ Matthew Chalmers @ Justin Searle @ Mateo Martinez @
OWASP GoatDroid Project	Jack Mannino @	Gunnar Peterson John Steven @
OWASP WhatTheFuzz Project	Joe Basirico @	N/A
OWASP ESAPI C++ Project	David Anderson @	Dan Amodio @ Kevin Wall @ Jeff Walton
OWASP ESAPI C Project	Dan Amodio @	David Anderson @
OWASP Security Tools for Developers Project (STD)	Mark Curphey @	John Wilander @ Psiinon @
OWASP Data Exchange Format Project	Psiinon @ Dinis Cruz @	Daniel Brzozowski @ Dafydd @
OWASP Cheat Sheets Project	N/A Jim Manico @	Michael Coates @
OWASP SIMBA Project	Koen Vanderloock @	N/A
OWASP VFW (Varnish FireWall)	Eduardo S. Scarpellini @	Leonardo Buonsanti @
OWASP WebScarab Project	Rogan Dawes @	N/A
OWASP OVAL Content Project	Gaurav Kumar @	N/A
OWASP WAF Project	Juan Carlos Calderon @	N/A
OWASP ESAPI Perl Project	Sterling Hanenkamp @	N/A
OWASP NAXSI Project	Thibault "bui" Koechlin @	Sebastien Blot Antonin Le Faucheux Didier Conchaudron Sofian Brabez
OWASP ESAPI for ColdFusion/CFML Project	Damon Miller @	Bill Shelton @ Jason Dean @
OWASP Open Review Project	Dan Cornell @	N/A
OWASP Best Practices: Use of Web Application Firewalls	OWASP Germany Local Chapter @	Achim Hoffmann @ Maximilian Dermann Mirko Dziadzka Boris Hemkemeier Alexander Meisel Matthias Rohr @ Thomas Schreiber
OWASP Application Security Requirements Project	Luis Martinez Bacha @	Zaki Akhmad @
OWASP Passw3rd Project	Neil Matatall @	N/A

Retrieved from "http://www.owasp.com/index.php?title=OWASP_Projects_Dashboard_2.0/By_Set_Up_Order&oldid=118572"

Categories:

OWASP Projects Dashboard 2.0/By Set Up Order

For example, to use in a JSP

For JavaScript string data

Other Contexts

Personal tools

Namespaces

Variants

Views

Actions

Search

Navigation

Reference

Language

Toolbox