OWASP Training

About
{| cellspacing="0" cellpadding="15" border="0" class="FCK__ShowTableBorders"
 * width="200" | [[Image:Banner OWASP Training page.gif|border|center|362x247px]]
 * width="200" | [[Image:Banner OWASP Training page.gif|border|center|362x247px]]

OWASP Training - OWASP Projects and Resources you can use TODAY!
The main goal of OWASP Training is to support Local Chapters' training activities in a way that allows us to use a model that, despite specific and punctual adjustments, can be easily replicated and become the main frame for all Chapter-led training events.

Furthermore, we will use the concept “OWASP projects and resources you can use TODAY!”

In a nutshell, we are proposing a Chapter’s driven model with Local Chapter organization in which:


 * The courses are free for OWASP members - being that by the time of the training event anyone may become a member if they desire to do so;
 * The contents are OWASP projects focused – to promote the awareness of our Projects and the understanding of how they fit into an Enterprise's security ecosystem or in its Web Application Development Life-cycle;
 * The costs are supported by a mix of funding - local chapter budget, external sponsorship, trainers sponsorship (i.e. trip and/or accommodation paid by themselves) and local chapter members’ sponsorship (i.e. taking trainers in as guests).

If you would like to organize a training event of this sort, please contact me after gathering the following information which will be our starting point:
 * valign="top" colspan="2" |
 * valign="top" colspan="2" |
 * Date of the event;
 * Venue and directions;
 * Course’s details - with regard to the contents, we would suggest that the focus falls into the OWASP Projects with the most quality and Projects being developed by members of your local Chapter.

The role of the Local Chapters in reinforcing visibility of OWASP Projects within the local corporate communities and, by that, in encouraging the use and understanding of our tools and documentation is absolutely invaluable – do get involved!

If you are interested in being part of OWASP's pool of Trainers, check our CALL FOR TRAINERS tab and add your name!
 * }

Trainers Database - Call for Trainers!
{| cellspacing="0" cellpadding="15" border="0" class="FCK__ShowTableBorders"
 * width="200" | [[Image:Banner OWASP Training page.gif|border|center|362x247px]]
 * valign="top" |
 * valign="top" |

CALL FOR TRAINERS - Trainers drive's goal
OWASP is looking for trainers to deliver training under the flag “OWASP projects and resources you can use today”. This is a model of training which is free for OWASP members, delivered by OWASP Leaders (with only travel expenses paid) and covering OWASP modules and/or projects.

If you are an OWASP Leader and would like to be included in OWASP's pool of trainers, this is your chance - add your name and info to the OWASP Trainers / Volunteers Table and be counted!

The role of the Local Chapters in reinforcing visibility of OWASP Projects within the local corporate communities and, by that, in encouraging the use and understanding of our tools and documentation is absolutely invaluable. In this context, the OWASP Training appears as an excellent vehicle to spread the knowledge and the word and that is why this is one of the areas we want to strongly focus on.

Click here for rules and conditions.


 * }

OWASP Trainers Database

 * }

Modules and Materials
{| cellspacing="0" cellpadding="15" border="0" class="FCK__ShowTableBorders"
 * width="200" | [[Image:Banner OWASP Training page.gif|border|center|362x247px]]
 * valign="top" |
 * valign="top" |

Training Modules

 * OWASP AppSensor Project


 * OWASP Code Crawler Project


 * OWASP Code Review Project


 * OWASP DirBuster Project


 * OWASP ESAPI


 * Guided tour of OWASP Projects


 * OWASP O2 Platform


 * OWASP Secure Coding Practices - Quick Reference Guide


 * OWASP Software Assurance Maturity Model (SAMM)


 * OWASP Testing Guide


 * OWASP Threat Risk Modeling


 * OWASP Top 10


 * OWASP WebGoat Project


 * OWASP WebScarab Project


 * OWASP Webslayer Project


 * OWASP Enigform (and Jify)


 * OWASP Application Security Verification Standard (ASVS)




 * valign="top" colspan="2" |

OWASP Appsec Tutorial Series, by Jerry Hoff

 * Episode 1: Appsec Basics
 * Episode 2: Injection Attacks

Other Training Materials

 * OWASP Default Training


 * London Training May 28th 2010


 * London Training April 16th 2010


 * Developing Compliant Applications (pdf)


 * Developing Secure Applications with OWASP (pdf)

Videos
IBWAS'10 Training Day sessions, 16th Dec 2010, Lisbon


 * }

Training Logos

 * }