[Owasp-board] FW: New_OWASP_Project_idea

Jeff Williams jeff.williams at owasp.org
Tue Mar 20 11:35:19 UTC 2007

Hi guys - what do you think about this?  I'm not crazy about offering a
"limited" version of a payware tool through OWASP.   On the other hand, it
would be something pretty cool to offer.  Anybody want to work on them to
release the whole thing???





From: Haluk AYDIN [mailto:haydin at biznet.com.tr] 
Sent: Monday, March 19, 2007 5:34 PM
To: owasp at owasp.org
Subject: New_OWASP_Project_idea




I'm directing the security testing and software development department of a
security services company. We provide security consultancy and testing
services for our client. For our purposes we have developed a tool which we
use to import results from various security scanners, as well as the results
of the manual tests, we consolidate, verify, and cleanse the results.


Lately we decided to redevelop this tool as a vulnerability management
software. The basic functions will include comparison of past reports,
workflows to provide remediation services, smart vulnerability consolidation
engine, a metric system for managing risks, comparison to baseline templates
such as PCI DSS, and more. We believe that this tool will help organizations
to manage their vulnerabilities as  well as identifying them. We also plan
to be able to import results of OWASP project tools.


We also plan to distribute a limited version of the tool freely to the
community. OWASP Spring of Code came to my attention and I thought this
project could be a candidate for it. If it is possible please let us know.


Best regards,




Director of Technology

BizNet Bilisim Sistemleri ve Danismanlik San. ve Tic. A.S.

Tel: +90 312 210 11 77

Fax:+90 312 210 11 67


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.owasp.org/pipermail/owasp-board/attachments/20070320/70431702/attachment-0002.html>

More information about the Owasp-board mailing list