[GPC] I am glad to announce we've just set a new project up - the OWASP Enhancing Security Options Framework (ESOP Framework), led by Amber Marfatia

Paulo Coimbra paulo.coimbra at owasp.org
Fri Mar 11 11:33:25 EST 2011


Leaders,

 

I am glad to announce we've just set a new project up - the OWASP Enhancing
Security Options Framework (ESOP Framework), led by Amber Marfatia. Please
join me to welcome him!

 

http://www.owasp.org/index.php/OWASP_ESOP_Framework#tab=Project_About 

 

http://www.owasp.org/index.php/User:Amber_Marfatia 

 

The purpose of the framework is to provide a security layer to a given web
application / web site via web service which can use the functions / modules
to protect the site from following vulnerabilities: 

 

1.	Remote code execution 
2.	SQL injection 
3.	Format string vulnerabilities 
4.	Cross Site Scripting (XSS) 
5.	Session hacking 
6.	Denial of service (DoS) attacks 
7.	Eavesdropping /Sniffing/ Phishing 
8.	Identity Spoofing 
9.	Man-in-the-Middle Attacks 
10.	Username enumeration 

1.	Instrumentation & Audits for: 
2.	Critical Business Areas 
3.	User Management 
4.	Un-usual activities 
5.	Interfaces Integrations 

11.	IIS Tweaks 
12.	Password Policy 

 

As always, your suggestions and contributions would be greatly appreciated.


 

Thanks,

- Paulo

 

Paulo Coimbra,

OWASP Project Manager <http://www.owasp.org/index.php/User:Paulo_Coimbra> 

 

-------------- next part --------------
An HTML attachment was scrubbed...
URL: https://lists.owasp.org/mailman/private/global-projects-committee/attachments/20110311/b80961c7/attachment.html 


More information about the Global-projects-committee mailing list