[Owasp-board] Press Release: OWASP Autumn of Code was a major success!

Dinis Cruz dinis at ddplus.net
Sun Mar 4 04:33:28 UTC 2007

Ok guys what do you think of this PR to complete the AoC 2006?


For Immediate Release

*OWASP Autumn of Code was a major success!*

*London, United Kingdom, March 5, 2007*

The Open Web Application Security Project (OWASP) is completing today the
OWASP Autumn of Code 2006 initiative (AoC 2006) which financially sponsored
9 individuals to work on OWASP Projects.
The project was a major success with all projects achieving their original
objectives and with some projects over-delivering.

The 9 sponsorships totalled $37,500 USD (5 at $3,500 USD and 4 at $5,000
USD) are were paid using the OWASP membership fees. The financial support
allowed the individuals sponsored to allocate considerable amounts of time
to their projects, and gave them an incentive to deliver the projects on the
agreed time scale.
The main beneficiaries are the OWASP members and the users of OWASP
tools/documentation (due to the  boost of quality and features of the
sponsored projects).

The 9 projects and individual sponsored where:

   1.  WebScarab
Dawes) - WebScarab is a tool for performing all types of security
   testing on web applications and web services
   2. Live CD<http://www.owasp.org/index.php/OWASP_Autumn_of_Code_2006_-_Projects:_Live_CD>(Joshua
Perrymon) - a Linux Live-CD distribution containing ready to use
   versions of OWASP application security tools and documents
   3. CAL9000<http://www.owasp.org/index.php/OWASP_Autumn_of_Code_2006_-_Projects:_CAL9000>(Chris
Loomis) -  CAL9000 is a JavaScript based web application security
   testing suite
   4. SiteGenerator and
de Libero) -  OWASP Report Generator (ORG) is a tool giving security
   professionals a way to report and keep track of their projects. OWASP Site
   Generator (OSG) is tool that allow users to create dynamic sites for use in
   training and web application scanner evaluation
   5. Pantera<http://www.owasp.org/index.php/OWASP_Autumn_of_Code_2006_-_Projects:_Pantera>(Simon
Roses) - is a a HttpProxy tool focused on combining automated
   capabilities with complete manual testing to get the best results
   6. Web Goat<http://www.owasp.org/index.php/OWASP_Autumn_of_Code_2006_-_Projects:_Web_Goat>(Sherif
Koussa) - WebGoat is an online training environment for hands-on
   learning about application security
   7. Testing Guide<http://www.owasp.org/index.php/OWASP_Autumn_of_Code_2006_-_Projects:_Testing_Guide>(Matteo
Meucci) - the Testing Guide is a 272 page document focused on
   application security testing procedures and checklists
   8. OWASP .NET
Maletic) - This AoC 2006 project deliverable was a new tool called
   OWASP Tiger which implemented the ASP.NET security tests previously
   published under the OWASP .NET Tools
   9. OWASP Website and
M. Holmes) - The owasp website (
   www.owasp.org) is built using WIKI technology and any registered user
   is able to make changes and update its content

Respecting the OWASP tradition of Openness and transparency, all relevant
information related to the AoC 2006 is published on the OWASP website:

   - *OWASP Autumn Of Code
2006*<http://www.owasp.org/index.php/OWASP_Autumn_Of_Code_2006>- The
AoC 2006 innitiative page
   - OWASP Autumn Of Code 2006 : Press
The press release
   - OWASP Autumn of Code 2006 -
The applications received
   - OWASP Autumn Of Code 2006 : Selected Projects Press
The selection press release
   - OWASP Autumn of Code 2006 -
The projects that were selected, the selection criteria and links to
   project page
   - OWASP Autumn of Code 2006 - Project
details about the project's achivements

The "OWASP Autumn of Code 2006" was organized by Dinis Cruz who is the OWASP
Chief Evagelist and can be contacted for further details.

*About OWASP*

The Open Web Application Security Project (OWASP) is 501c3 not-for-profit
foundation dedicated to enabling organizations to develop, purchase, and
maintain applications that can be trusted. OWASP's open source projects and
local chapters produce free, unbiased, open-source documentation and tools.
The OWASP community also facilitates conferences, local chapters, papers,
presentations, and mailing lists. More information can be found at



Dinis Cruz, Chief OWASP evangelist
E-mail: dinis.cruz at owasp.net

Andrew van der Stock, OWASP Executive Director,
E-mail: vanderaj at owasp.org

Jeff Williams, OWASP Chair (Alternative contact for all OWASP matters),
E-mail:jeff.williams at owasp.org
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.owasp.org/pipermail/owasp-board/attachments/20070304/75fc4a7e/attachment-0002.html>

More information about the Owasp-board mailing list