[Owasp-leaders] New OWASP project

mark curphey mark at curphey.com
Mon Oct 31 20:38:44 EDT 2011


Please tell me its April fools day or something?

On Oct 31, 2011, at 5:27 PM, Jim Manico wrote:

> We already have a project that documents web application firewall rules:
> 
> https://www.owasp.org/index.php/Category:OWASP_ModSecurity_Core_Rule_Set_Project
> 
> And yes there are tons of PBX-centric web applications that could be
> rolled into a OWASP project around infrastructure.
> 
> Everything touches web. OWASP is great at forming communities. If we
> find folks who are willing to do real work and share it with the
> community, even a slight relationship to web security (like the mobile
> project) is enough to entry IMO.
> 
> - Jim
> 
>> There are many reasons but the British phrase "Jack of all trades, master of none" is the most obvious. It's already hard to navigate OWASP as it is. Could I start a project to document firewall rules or Pbx hacking techniques? Fantastic volunteer community, let's harness them behind a mission and common goal.
>> 
>> 
>> Sent from my Phone
>> 
>> On Oct 31, 2011, at 4:58 PM, Jim Manico <jim.manico at owasp.org> wrote:
>> 
>>> A better question is, is there any reason why OWASP should not be doing
>>> this?
>>> 
>>> We need to encourage new projects and err on the side of welcoming
>>> volunteers who are willing to actually do some work!
>>> 
>>> - Jim
>>> 
>>>> Hiya, sorry if I am missing something obvious but why is owasp doing this ?
>>>> 
>>>> Sent from my Phone
>>>> 
>>>> On Oct 31, 2011, at 4:48 PM, Lucas Ferreira <lucas.ferreira at owasp.org> wrote:
>>>> 
>>>>> Dear fellow leaders,
>>>>> 
>>>>> I'd like to announce a new OWASP project, the OWASP File Hash
>>>>> Repository (https://www.owasp.org/index.php/OWASP_File_Hash_Repository).
>>>>> Its descritption is:
>>>>> 
>>>>> The goal of this project is to build a repository of hashes of
>>>>> executable and source files. This repository can then be queried by
>>>>> clients to determine the status os of files based on their hashes.
>>>>> Some statuses are GOOD, MALWARE, SOURCE CHECKED, etc. This repository
>>>>> can consolidate several available sources (NIST, MHR, VirusTotal, etc)
>>>>> and provide better query capabilities.
>>>>> 
>>>>> The project mailing list is available here:
>>>>> https://lists.owasp.org/mailman/listinfo/owasp-file-hash-repository,
>>>>> or contact me directly if you have questions or comments.
>>>>> 
>>>>> Best regards,
>>>>> 
>>>>> Lucas
>>>>> 
>>>>> -- 
>>>>> Homo sapiens non urinat in ventum.
>>>>> _______________________________________________
>>>>> OWASP-Leaders mailing list
>>>>> OWASP-Leaders at lists.owasp.org
>>>>> https://lists.owasp.org/mailman/listinfo/owasp-leaders
>>>> _______________________________________________
>>>> OWASP-Leaders mailing list
>>>> OWASP-Leaders at lists.owasp.org
>>>> https://lists.owasp.org/mailman/listinfo/owasp-leaders
>>> 
>>> -- 
>>> Jim Manico
>>> 
>>> Connections Committee Chair
>>> Cheatsheet Series Product Manager
>>> OWASP Podcast Producer/Host
>>> 
>>> jim at owasp.org
>>> www.owasp.org
>>> 
> 
> 
> -- 
> Jim Manico
> 
> Connections Committee Chair
> Cheatsheet Series Product Manager
> OWASP Podcast Producer/Host
> 
> jim at owasp.org
> www.owasp.org
> 



More information about the OWASP-Leaders mailing list