Dr. Drew Hwang, CIS, Cal Poly Pomona
Home
101
WDD
ECOMM
SWA
SP
Secure Web Development
Home
Basics
Offense
Defense
SDLC
Code
Access
Parameter
Perimeter
Browser
Industry
Resource
Industry
Associations
OWASP
WASC
Compliance
Organizations
testingSecurity.com
GitHub Security
INFOSEC Institute
The SANS Institute
RSA Conference
Conferences
RSA
Print
OWASP
The Open Web Application Security Project
(OWASP) is a not-for-profit worldwide charitable organization focusing on improving Web application security. Its mission is to make Web application security visible, so that people and organizations can make informed decisions about true application security risks.
Missions
According to this
document
, OWASP has the following
missions
:
Promotes secure software development
Oriented to the delivery of web oriented services
Focused primarily on the back-end than web-design issues
An open forum for discussion A free resource for any development team
Features
OWASP has the
features
as below:
Non-profit, volunteer driven organization
All members are volunteers
All work is donated by sponsors
Provide free resources to the community
Publications, Articles, Standards
Testing and Training Software
Local Chapters & Mailing Lists
Supported through sponsorships
Corporate support through financial or project sponsorship
Personal sponsorships from members
Major Publications
Top 10 Web Application Security Vulnerabilities
2007
2010
:
Guide to Building Secure Web Applications
Legal Project
Metrics & Measurements Project
testing Project
AppSec Faq