OWASP looking for case studies

[Kevin W. Wall]

The OWASP Executive Director, Andrew van der Stock, announced today on the OWASP Leaders List that OWASP is interested in gathering a few case studies from each project to post on the project's OWASP wiki page.

If anyone has anything that they would like to share in terms of case studies for ESAPI, please drop myself and/or Matt a line and one of us will arrange to make it happen. We could either do it written or as recorded video or however you want.

As per Andrew, some of the questions they believe people would be interested in include:

• How did you get into using ESAPI?
• How does ESAPI support your organization/business / how do you use it day to day?
• Any results, including improvements in security posture, improved appsec programs, improved appsec test results, etc, etc?
• Discuss how to get involved - Discuss how to get involved - A discussion on any improvements that you'd like to see?
• Finish off with how to get involved with your project, starting with starter bugs / improvements so we can help you get more contributors or a more active community. I think many users of projects don't know they can help, so a quick discussion along those lines hopefully will drive new contributors to your project.

Note that we can collect as many of these as we would like so you are all welcome to contribute.

Thanks in advance,

-kevin

--

Blog: https://off-the-wall-security.blogspot.com/    | Twitter: @KevinWWall | OWASP ESAPI Project co-lead
NSA: All your crypto bit are belong to us.