OWASP Security Tools for Developers Project

Home
{| width="100%" ! width="33%" | ! width="33%" | ! width="33%" |
 * - valign="top"

Wanna get involved?
....join the discussion mailing list

While the project is open to all we are particularly looking for developers who will actively contribute code. We are especially interested in any developers that have experience in customizing Jenkins, extending Git, unit testing frameworks or customizing mangement tools like ScrumDo. We are also interested in any developers interested in extending behaviour driven development testing frameworks like JBehave.

Join the mailing list, hang out and say hi or contact the project leader [mailto:mark@curphey.com?subject=OWASP%20STD%20Project Mark Curphey].


 * mailing list



What exactly are you producing?
....the 50,000 ft plan

The project is still in its infancy but the plan is to produce the following:


 * Reference Architecture
 * Reference Implementation

As part of those two key areas we expect to build or customize tools and develop configuration guides for particular technologies. While we don't yet know exactly what that will include it may include IDE plugins or extensions to common testing frameworks to make integrating security tests easier.



How are you doing this?
....by being Agile of course!

We are planning to run the project like an Agile software project itself by building a backlog and running sprints. We may even try and use Google Hangouts for video stand-up meetings!

Our current timeline looks like:


 * August - Project Planning
 * September - Sprint 1
 * October - Sprint 2
 * November - Sprint 3
 * December - Sprint 4

In due course (when we have a backlog) we will publish a roadmap.


 * }