OWASP WASC Distributed Web Honeypots Project
The goal of the OWASP WASC Distributed Web Honeypots Project is to identify emerging attacks against web applications and report them to the community including automated scanning activity, probes, as well as, targeted attacks against specific web apps.
Introduction
The goal of the Distributed Web Honeypot (DWH) Project is to identify emerging attacks against web applications and report them to the community. This may include automated scanning activity, probes, as well as, targeted attacks against specific web sites or applications. The scope of this project has recently been expanded to include deployment of both standard web application honeypots and/or open proxy honeypots. Project participants may choose whether they want to run their honeypot as an open proxy or a stand-alone sensor.
Description
This project fills a need in the web application Defender's community to have detailed data about mass web application scanning attacks such as those being operated by Botnets. This project will provide detailed data about attacks and their origins.
https://www.owasp.org/index.php/OWASP_WASC_Distributed_Web_Honeypots_Project
The goal of the OWASP WASC Distributed Web Honeypots Project is to identify emerging attacks against web applications and report them to the community including automated scanning activity, probes, as well as, targeted attacks against specific web apps.
Introduction
The goal of the Distributed Web Honeypot (DWH) Project is to identify emerging attacks against web applications and report them to the community. This may include automated scanning activity, probes, as well as, targeted attacks against specific web sites or applications. The scope of this project has recently been expanded to include deployment of both standard web application honeypots and/or open proxy honeypots. Project participants may choose whether they want to run their honeypot as an open proxy or a stand-alone sensor.
Description
This project fills a need in the web application Defender's community to have detailed data about mass web application scanning attacks such as those being operated by Botnets. This project will provide detailed data about attacks and their origins.
https://www.owasp.org/index.php/OWASP_WASC_Distributed_Web_Honeypots_Project
Brian Beaudry ([email protected]) has been choosen by google (GSoC 2016) as mentor to develop windows shellcodes for owasp zsc project (https://github.com/Ali-Razmjoo/OWASP-ZSC)
GitHub
GitHub - OWASP/ZSC: OWASP ZSC - Shellcode/Obfuscate Code Generator https://www.secologist.com/
OWASP ZSC - Shellcode/Obfuscate Code Generator https://www.secologist.com/ - OWASP/ZSC
OWASP VBScan Version 0.1.6 Released
Project Leader : Mohammad Reza Espargham
https://www.owasp.org/index.php/OWASP_VBScan_Project
Project Leader : Mohammad Reza Espargham
https://www.owasp.org/index.php/OWASP_VBScan_Project
OWASP VBScan
OWASP VBScan (short for [VB]ulletin Vulnerability [Scan]ner) is an opensource project in perl programming language to detect VBulletin CMS vulnerabilities and analyses them .
Why OWASP VBScan ?
If you want to do a penetration test on a vBulletin Forum, OWASP VBScan is Your best shot ever! This Project is being faster than ever and updated with the latest VBulletin vulnerabilities.
Project Leader : Mohammad Reza Espargham
Github : https://github.com/rezasp/vbscan/
SourceForge : https://sourceforge.net/projects/vbscan/
OWASP Page : https://www.owasp.org/index.php/OWASP_VBScan_Project
OWASP VBScan (short for [VB]ulletin Vulnerability [Scan]ner) is an opensource project in perl programming language to detect VBulletin CMS vulnerabilities and analyses them .
Why OWASP VBScan ?
If you want to do a penetration test on a vBulletin Forum, OWASP VBScan is Your best shot ever! This Project is being faster than ever and updated with the latest VBulletin vulnerabilities.
Project Leader : Mohammad Reza Espargham
Github : https://github.com/rezasp/vbscan/
SourceForge : https://sourceforge.net/projects/vbscan/
OWASP Page : https://www.owasp.org/index.php/OWASP_VBScan_Project
GitHub
GitHub - OWASP/vbscan: OWASP VBScan is a Black Box vBulletin Vulnerability Scanner
OWASP VBScan is a Black Box vBulletin Vulnerability Scanner - OWASP/vbscan
It is with great sorrow that I must write to report the sad news of the death of our Executive Director, Paul Ritchie, after a short illness.
Paul first joined OWASP in August of 2014 and became the full time Executive Director in May 2015. He has helped the organization to grow globally and has made an enormous difference in our community. He will be greatly missed. He brought order and professionalism. He raised our own high expectations and delivered on the things he set out to do. He made all of us that worked closely with him better and more effective. He helped to set long term strategic goals and managed OWASP’s fiduciary responsibilities with ease.
On behalf of the Board of Directors, we will miss Paul for his leadership and friendly wry knowing smile as the board worked to make difficult choices. I doubt I can express my own sinking feeling of grief at the news, which came suddenly and too early.
Paul’s family asked that we direct those in the community that would like to show support or make a donation to do so in Paul Ritchie’s name to the Multiple Myeloma Research Foundation at https://www.themmrf.org.
Paul first joined OWASP in August of 2014 and became the full time Executive Director in May 2015. He has helped the organization to grow globally and has made an enormous difference in our community. He will be greatly missed. He brought order and professionalism. He raised our own high expectations and delivered on the things he set out to do. He made all of us that worked closely with him better and more effective. He helped to set long term strategic goals and managed OWASP’s fiduciary responsibilities with ease.
On behalf of the Board of Directors, we will miss Paul for his leadership and friendly wry knowing smile as the board worked to make difficult choices. I doubt I can express my own sinking feeling of grief at the news, which came suddenly and too early.
Paul’s family asked that we direct those in the community that would like to show support or make a donation to do so in Paul Ritchie’s name to the Multiple Myeloma Research Foundation at https://www.themmrf.org.
MMRF
The MMRF | Multiple Myeloma Research Foundation
The Multiple Myeloma Research Foundation (MMRF) is the largest nonprofit in the world focused on accelerating a cure for each and every myeloma patient.
OWASP launches bug bounty program on the OWASP Zed Attack Proxy, one of the world's most popular free security tools: https://bgcd.co/1XzVCGa
سریالی دیدنی برای علاقه مندان به امنیت اطلاعات و دوست داران حریم شخصی #PersonOfInterest @irOWASP
owasp zsc updated to generate windows PEB based #shellcode of system() function. https://github.com/Ali-Razmjoo/OWASP-ZSC @irOWASP
GitHub
GitHub - OWASP/ZSC: OWASP ZSC - Shellcode/Obfuscate Code Generator https://www.secologist.com/
OWASP ZSC - Shellcode/Obfuscate Code Generator https://www.secologist.com/ - OWASP/ZSC
OWASP ZSC Tool Project Leaders ( Ali Razmjoo and Johanna Curiel ) are officially invited to DEF CON and will be present on conference, The computer security conference will be held from August 4to August 7, 2016 at Paris/Bally's Hotel & Casino in Las Vegas, Nevada, USA. more info: https://defcon.org https://github.com/zscproject/OWASP-ZSC @irOWASP
www.defcon.org
The largest hacking and security conference with presentations, workshops, contests, villages and the premier Capture The Flag Contest.
Forwarded from ناویا، ماشین کاوش اپلای
تبریک به علی رزمجو (یکی از اعضای اصلی گروه پژوهشی آفسک) بمناسبت دعوت رسمی مجمع سالانه هکرهای برگزیده دنیا (DEFCON) از ایشان واقع در لاسوگاس امریکا به پاس OWASP ZSC
https://goo.gl/LXR07g
@offsecmag
https://goo.gl/LXR07g
@offsecmag
دعوت از آقای محمدرضا اسپرغم به کنفرانس Blackhat 2016 لاسوگاس امریکا، را از طرف تیم owasp تبریک عرض میکنیم https://goo.gl/cfoKUu @irOWASP