OWASP Project Manager Activity Reports/October 10 2013

Work accomplished since September 2013

 * Project Numbers
 * Active Projects: 142
 * Inactive Projects: 103


 * New Project Applications
 * OWASP Vulnerable Web Applications Directory


 * New OWASP Projects
 * OWASP Media Project
 * OWASP Global Chapter Meetings Project
 * OWASP JAWS Project
 * OWASP This I Believe Security Project
 * OWASP Node.js Goat Project
 * OWASP Pygoat Project
 * OWASP Python Security Project


 * Projects Under Review
 * OWASP Cheat Sheets Project
 * OWASP Java HTML Sanitizer Project (Testing)
 * Xenotix XSS Exploit Framework
 * OWASP Cornucopia Project (Testing)
 * OWASP Java Encoder Project (Testing)

Project Manager Q4 2013 Objectives

 * 1) Finish planning Project Summit & Execute Summit at AppSec USA.
 * 2) Develop & Finish Global Projects Strategy for 2014: Includes Budget
 * 3) Finish Fundraising Strategy for 2014: Includes Budget


 * Ongoing Objectives for 2013
 * Quarterly Report to DHS
 * Continue helping leaders reach their grant required milestones
 * Finalize graphic design delivery from Patrick: 2 pieces to go.

Currently Working On

 * 2013 Project Summit
 * I continue to work on organizing the 2013 OWASP Projects Summit.
 * Current session topics include:
 * Projects Workshop
 * ESAPI Hackathon
 * ZAP Hackathon
 * University Outreach, Education, and Training
 * Writing, Proof-reading, and Technical Editing
 * Product Development and Reference Implementation
 * Mobile Security Project Session
 * Bug Bounty Session
 * I urge everyone to add your name to the attendees list if you are interested in a session, or suggest new topics that you would be more interested in attending.


 * Technical Project Advisors: Work Update
 * The Technical Project Advisors and I had another group meeting this week.
 * We discussed both the project health assessment and the product quality assessment in detail.
 * We have finally reached a point where we are happy with both assessment criteria.
 * We are now finalizing the documentation so we can present the final version to the community.
 * Assessment Criteria V7
 * We hope to have the criteria agreed on by next week.
 * Note: We have separated out the focus of each assessment.
 * The Project Assessment focuses on the project health based on OWASP best practices.
 * The Product Assessment focuses on the quality of the deliverable.


 * Women in AppSec: AppSec USA 2013
 * The Women in AppSec grading process is now complete.
 * We have now selected 2 winners for this year's sponsorship.
 * We are now in the process of setting them up with their flights, registration, and accommodation.
 * The two winners are:
 * Nancy Lorntson
 * Carrie Schaper


 * Meet our new Grants & Fundraising Intern
 * Kait continues to do an excellent job with all of her tasks.
 * This week, she worked on helping us hire transcriptionists to transcribe the Board Election Candidate Interviews.
 * Additionally, she worked on a hand full of administrative tasks for Women in AppSec, she created a ppt presentation about OWASP and the Top Ten.
 * She is also now working on project summit related activities, helping organize the schedule of session and creating content for the summit pages.
 * You can read more about her week by reading her Intern Weekly Report.
 * Start Date: Monday, September 16th 2013.
 * Internship End Date: Monday, January 13th 2014.


 * OWASP Marketing
 * I continue to work on finalizing our contract with the marketing and design agency we hired to create our OWASP identity package.
 * We have finalized the majority of the design pieces we requested from the graphic designer.
 * There is only one design piece left to create as of today.
 * I will work with the graphic designer to finalize this last piece in the next coming weeks.

Project Funding Updates

 * OWASP OWTF Project: Brucon 5x5 Award
 * 1) Amount: €5,000.00 (Approx. $6,670.00)
 * 2) Status: Awarded. Congratulations, Abraham Aranguren and all involved in the project, for your award.


 * OWASP OWTF Grant Proposal
 * 1) Amount: $55,800 USD
 * 2) Status: This proposal is complete, and has been submitted.


 * OWASP AppSensor Grant Proposal
 * 1) Amount: ￼$15,000 USD
 * 2) Status: This proposal is complete, and has been submitted.


 * OWASP OpenSAMM Grant Proposal
 * 1) Amount: $112,000 USD
 * 2) Status: This proposal is complete, and has been submitted.


 * OWASP Guidebooks Proposal
 * 1) Amount: $25,000 USD
 * 2) Status: Awarded. The first payment has been allocated to our project budgets. The second invoice has now been sent to Georgia Tech and payment has been received.
 * 3) OWASP Development Guide Plan
 * 4) OWASP Testing Guide Plan
 * 5) OWASP Code Review Guide Plan


 * OWASP ESAPI Grant Proposal
 * 1) Amount: $25,000 USD
 * 2) Status: The ESAPI proposal is still being reviewed.


 * OWASP ModSecurity CRS Proposal
 * 1) Amount: $30,000 USD
 * 2) Status: The ModSecurity proposal is still being reviewed.


 * Google Grants Proposal
 * 1) Amount: $120,000 USD in Adwords Funds
 * 2) Status: Awarded.
 * 3) Note: There is no link to show the proposal for this grant. There was a form that was submitted to Google, and we did not receive a record of this form.


 * European Commission Grant Proposal
 * 1) Amount: €250,000
 * 2) Status: Denied.


 * Google Summer of Code
 * 1) Amount: $5,500
 * 2) Status: Awarded


 * Projects breakdown:
 * 4 ZAP Projects: $2,000
 * 4 OWTF Projects: $2,000
 * 1 PHP Security Project: $500
 * 1 Hackademics Project: $500
 * 1 Modsecurity Project: $500
 * Note: Big thank you to Fabio Cerullo for coordinating and managing this award.


 * Total Funds Awarded: $157,170 USD for 2013.

OWASP Project Manager Weekly Reports

 * 1) Project Manager Report: September 06 2013 - No Report this week. PM was away.
 * 2) Project Manager Report: September 13 2013
 * 3) Project Manager Report: September 20 2013
 * 4) Project Manager Report: September 27 2013
 * 5) Project Manager Report: October 04 2013