The Open Web Application Security Project (OWASP) is a 501c3 not-for-profit worldwide charitable organization focused on improving the security of application software. Our mission is to make application security visible, so that people and organizations can make informed decisions about true application security risks. Everyone is free to participate in OWASP and all of our materials are available under a free and open software license.
OWASP Click Me Project The OWASP Click Me Project aimed at having a simple GUI which helps to create a test page for Clickjacking attacks.This is an attack which targets the clickable content on a website. OWASP Click Me tool will help you to test whether your site is vulnerable to this attack by creating a html page that will try to load your web site from a frame. For more information, please contact the Project Leader, Arun Kumar.
New OWASP Projects
OWASP JSEC CVE Details Project OWASP JSEC CVE Details is is an opensource application developed in Java that uses the api provided by cvedetails.com to receive latest CVE updates. The Common Vulnerabilities and Exposures (CVE) system provides a reference-method for publicly known information-security vulnerabilities and exposures. For more information, please contact the Project Leader, Dibyendu Sikdar. OWASP Persian Translation Project The OWASP Persian Translation Project is a documentation project with the goal of translating fundamental OWASP projects, such as the Top 10 and Testing Guide. Several translations are already available on the project page. For more information, please contact the Project Leader, TamadonEH.
Project Summit USA 2014 AppSec USA is coming up this month. If you are a project leader and plan to attend, there is still opening available for participation in the Project Summit. The Project Summit is a chance for leaders to showcase the progress of their projects and to sit down with community members to brainstorm the future of individual projects. If you are interested in signing your project up for the Project Summit, you can do so HERE. If you have any questions about the project summit, please contact Jonathan Marcil
OWASP has partnered with these great events in beginning of 2014 to grow our community and build awareness around software security. If you want to learn more about OWASP's involvement or will be attending and want to help out contact us Fraud Summit Toronto, (Sept 8, 2014) Toronto, Canada. SECUREFRIBOURG 2014, (Sept 11), Fribourg, Switzerland, OWASP Members save 50% off of the non-(ISC)2 Member Full Conference Pass with the code: ISCFRIOWASP SECUREIBERIA 2014, (Sept 16), Madrid, Spain, OWASP Members save 50% off of the non-(ISC)2 Member Full Conference Pass with the code: ISCIBOWASP (ISC)2 Security Congress, (Sept 22 - Oct 2), OWASP Members save $355 off of the non-(ISC)2 Member Full Conference Pass. Attendees can expect over 80 educational sessions designed to strengthen cybersecurity defenders, focus on current and emerging issues, best practices, and challenges facing cybersecurity leaders. EC-Council Hacker Halted(October 12-17, 2014) Atlanta, GA ISSA International Conference (October 22-23), 2014, Orlando, FL SECUREAMSTERDAM 2014, (Nov 6), Amsterdam, NE SECUREDUBAI 2014, (Nov 6), Amsterdam, NE Suits & Spooks, (December 14), Singapore.
CLICK HERE to view the candidates bio and "why me?" information in a Google Document The next step is, the candidates will conduct individual interviews answering questions from the community. Anyone can submit a question(s). If you have a question you would like to submit, please do so here.
2014 Web Application Security People of the Year (WASPY) Awards
Join us in congratulating this year's Winners:
Best Chapter Leader - Japan Chapter leaders
Best Project Leader - Simon Bennetts
Best Mission Outreach - AppSec USA 2013 Team
Best New Community Supporter - AppSec APAC 2014 Team
Best Platform Supporter - Johanna Curiel
The winners will be recognized during a ceremony on Wednesday September 17th in Denver
Thank you to Qualys, our Platinum Award Sponsor!
NEW OWASP CHAPTERS
Ames, Iowa - North America
Cork, Ireland - Europe
Dominican Republic - Latin America
Madrid, Spain - Europe
Manizales, Columbia - Latin America
Sohag, Egypt - Middle East
Fortaleza, Brasil - Latin America
Honduras - Latin America
Kenya - Africa
Kerala, India - Middle East
Mexico City, Mexico - Latin America
Mobile, Alabama - North America
Newcastle, UK - Europe
Taiwan - Asia
Just for Fun
Congratulations to Ann Alfano who was the ONLY person to solve last week's challenge: Answer: 30 arrangements The last puzzle was quite the stumper! Thank you everyone who submitted responses. Click here to view last issue's puzzle The puzzle is on Holiday this week! Get back to work!