Friday, 19 January 2024

OWASP Web 2.0 Project Update

Some of you likely recall the talk back in 2016 or so of updating the OWASP Foundation website to not appear so much like a...well, a wiki.  That talk was carried forward into 2017 and 2018 and, with each year, the proposal got pushed ahead as there were other, deeper projects to tackle.  With the arrival of 2019 and a firm project plan under the guidance of Mike McCamon, Executive Director, we are finally moving toward a functioning, modern website that will be a whole lot less...wiki-like.  The journey has been circuitous and, while we are not anywhere near complete, we have a set plan in place to bring it to fruition within the calendar year (second quarter of the year, actually).

TLDR: How Can You Help? 

There are certainly ways in which you can get involved now.  For instance, we are looking for a clean way to get wiki pages into GitHub markdown format for archival.  I have done some work here but there are parsing issues with some of the tools.  Do you know a good tool or have you done similar work?  Also, are you or do you know a good designer, someone familiar with GitHub pages that can provide some useful help and feedback along the way?  A Jekyll expert to help code a theme with a handful of templates would be a great addition.  In addition, we could use website server admins who could help with assigning redirects to maintain search integrity.  Finally, there will be a great many pages to move that we will also eventually need community involvement in.  

So, What Have We Done? 

Thus far we have researched various ideas for standing up a new site, including modifying the current wiki, spinning up our own web server, contracting a third party to host and build a new site, and also using existing infrastructure with our own content to launch a new face for OWASP.  Our discussions led us to a familiar place, one that nearly every developer in the OWASP space is familiar with: GitHub.   

In our conversations with GitHub, it became readily apparent that using the platform would be a win for the Foundation as well as GitHub.  Nearly everyone who runs a project at OWASP (documentation or otherwise) uses GitHub.  Because our target audience is also mostly developers we know that they are also very comfortable with the platform.  And while GitHub has a number of high profile companies using their GitHub Pages, the use of the platform as the basis for the entire website of the number one non-profit foundation in the application security sector is a big draw.

We have run with that GitHub Pages idea and have spent internal manpower on a proof of concept.  This proof of concept is less about the UX of the site than the functionality, the ability to utilize the authentication systems, and the ability to utilize automation to push out changes quickly.

Where Are We Now?

We are doing the final stages of website architecture. We are also planning what needs to be in the site, how the pieces will integrate with current projects and chapters, and how we might utilize the community to integrate the pieces so that we have a visually and functionally cohesive website that spans across multiple repositories.

What Is Next?

We will soon be looking for a modern website design that is responsive and clean.  We will begin using the knowledge gained from our proof of concept to build out the internals of the website and then we will start implementing the highest traffic pages and administrative areas into the new platform.  Once we have the big-ticket items moved we will start looking at what is left and moving over those pieces.  The eventual goal would be to have a new, modern website for the future of OWASP while keeping the wiki as an archive of really useful information.


We hope you are as excited as we are about the future of the OWASP Foundation website and will join us as we move toward a modern web presence.  If you have any questions or would like to volunteer your time, experience or knowledge, please contact me at harold.blankenship@owasp.com

More information
  1. Tools Used For Hacking
  2. Hacker Hardware Tools
  3. Hacker Tools
  4. Hack Tools Download
  5. Pentest Tools List
  6. Hacking Tools For Games
  7. Nsa Hack Tools Download
  8. Pentest Tools For Windows
  9. Hacker Techniques Tools And Incident Handling
  10. Pentest Tools For Windows
  11. Growth Hacker Tools
  12. Hacking Tools For Games
  13. Hacker Tools For Mac
  14. Pentest Tools For Mac
  15. Hack Tools Mac
  16. Pentest Tools For Ubuntu
  17. Pentest Tools Nmap
  18. Pentest Tools For Mac
  19. Pentest Tools Android
  20. Hacking Tools For Windows Free Download
  21. World No 1 Hacker Software
  22. Hacker Tools For Ios
  23. Hacks And Tools
  24. How To Hack
  25. Pentest Tools Tcp Port Scanner
  26. Hacker Tools For Windows
  27. Pentest Tools Apk
  28. Hack Tools Pc
  29. Hack Tool Apk
  30. Hacker Tools Free Download
  31. Pentest Tools Subdomain
  32. Bluetooth Hacking Tools Kali
  33. Hack Tools 2019
  34. Hacks And Tools
  35. Pentest Tools Website Vulnerability
  36. Nsa Hacker Tools
  37. Hacking Tools For Kali Linux
  38. Game Hacking
  39. Hack Tools Online
  40. Hack Tools Download
  41. Hack App
  42. Hacking Tools Kit
  43. Nsa Hack Tools Download
  44. Hacking Tools For Windows 7
  45. Hacking Tools Software
  46. Hacker Tools Hardware
  47. Hacker Tools For Ios
  48. Hacker Tools
  49. Top Pentest Tools
  50. Hacking Tools
  51. Hacking Tools And Software
  52. Hacker Tools Apk Download
  53. Pentest Tools Online
  54. Hacking App
  55. Pentest Tools Port Scanner
  56. Hackrf Tools
  57. Blackhat Hacker Tools
  58. Hak5 Tools
  59. Install Pentest Tools Ubuntu
  60. Hacker Tools Linux
  61. Hacker Tools Free Download
  62. Blackhat Hacker Tools
  63. Hacking Tools Online
  64. Hacking Tools Windows 10
  65. Pentest Box Tools Download
  66. Hacking Tools For Pc
  67. Hack Tools For Ubuntu
  68. Hack Rom Tools
  69. Best Hacking Tools 2020
  70. Pentest Tools For Android
  71. Hacker Tools Free
  72. Tools Used For Hacking
  73. Hacking Tools For Pc
  74. Pentest Tools For Windows
  75. Hacker Tools
  76. Termux Hacking Tools 2019
  77. Hacker Tools Free
  78. Hacker Techniques Tools And Incident Handling
  79. Nsa Hack Tools Download
  80. Hack Tools Download
  81. Pentest Tools Subdomain
  82. Hack Tools For Mac
  83. Hacking Tools Download
  84. Pentest Reporting Tools
  85. Android Hack Tools Github
  86. How To Make Hacking Tools
  87. Pentest Automation Tools
  88. Pentest Tools Website Vulnerability
  89. Hacking Tools 2020
  90. Pentest Automation Tools
  91. Hack Tools Online
  92. Pentest Tools Free
  93. How To Make Hacking Tools
  94. Termux Hacking Tools 2019
  95. Hacker
  96. How To Hack
  97. Hack App
  98. Nsa Hacker Tools
  99. Github Hacking Tools
  100. Hack Tools
  101. Hackers Toolbox
  102. Hack App
  103. Tools 4 Hack
  104. Physical Pentest Tools
  105. What Are Hacking Tools
Posted by at

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)