OWASP A&D Project
Apr. 17, 2018•0 likes•541 views
Download to read offline
Report
Technology
OWASP A&D Project Introduction
Yuichi HattoriFollow
Recommended
OWASP A&D Project Competition ModeYuichi Hattori
Introduction to test automationNibu Baby
"Experiences Of Test Automation At Spotify" with Kristian KarlTEST Huddle
Zibrasoft | Software QA Testing Company InidaZibraSoft Technologies
Dotcom monitor platform overviewtrippj
The Four Hats of Load and Performance Testing with special guest MentoraSOASTA
More Related Content
Similar to OWASP A&D Project
Основы нагрузочного тестирования с инструментом JmeterКомпьютерная школа Hillel
Peeling the Onion: Making Sense of the Layers of API SecurityMatt Tesauro
Accessibility Testing - Using Asqatasun - Meetup WebinarKeyur Shah
Kristian Karl - Experiences of Test Automation at Spotify - EuroSTAR 2013TEST Huddle
Kristian Karl - Experiences of Test Automation at Spotify - EuroSTAR 2013TEST Huddle
Testdroid: Lingkai Shao
Recently uploaded
Graph Neural Networks.pptxKumar Iyer
GDSC Final PPT.pptxDishaSharma737984
Diogo Monteiro- KAMK Certificate - Demola Global Project 2023.pdfDiogoMonteiro786960
FewShotExamples.pptxAlok Ranjan
AI and ML Series - Leveraging Generative AI and LLMs Using the UiPath Platfor...DianaGray10
NoSQL Data Migration Masterclass - Session 1 Migration Strategies and ChallengesScyllaDB
OWASP A&D Project
- OWASP A&D Project OWASP A&D Project Leaders Takaharu Ogasa Yuichi Hattori Shota Sato Apr 15, 2018
- What’s OWASP A&D Project? • A&D stands for Attack and Defense. • OWASP A&D Project is a Deliberately Vulnerable Web-application Interactive Platform focuses on web application developers to fix its vulnerabilities through the real world like environment. – We call this platform A&D platform. • The project aim is participants to acquire skills of find and fix web application vulnerabilities.
- A&D Platform • The platform will include – standalone mode for self-study – Competition mode mode for event • The platform will support – automatic attack to the web application – Status check for web application vulnerabilities
- A&D Platform A&D Platform Overview(Competition Mode) Operator’s Server Participant’s servers Status Check Attack Fix And Search (SSH) View Status and Ranking (HTTP)
- Competition Mode • Competition mode is for multi users event. • We will provide – Ranking and Score Graph – Auto Scoring – Match system like Tennis
- A&D Platform Overview(Standalone Mode) A&D Platform Check Server (Automated Or Manual) Challenge’s Servers Status Check Attack Fix And Search (SSH) View Status (HTTP)
- Standalone Mode • Standalone mode is for Self-Study. • Standalone mode concept is developer can study at home. • We will provide study environment include vulnerabilities description. • We will provide some challenges what adjusted a insecure web application for A&D event.
- Roadmap of next 6 months • develop A&D platform. • develop 3 insecure web application for the platform. • create A&D Quick Start Guide for Event . • create A&D Quick Start Guide for Self-Study. • Finalize the A&D project and have it reviewed to be promoted from an Incubator Project to a Lab Project.
- Deliverables of next 6 months • Attack and Defense Quick Start Guide(PDF). – For Event, For Self-Study. • A&D Platform – source code, docker image, and vm image. • Three Insecure web application – source code, docker image, and vm image.