O2: A brief introduction and why you should care

If you consider yourself a well-educated follower of all things info security related, then the Owasp O2 Platform project shouldn’t come as a surprise. If that’s not the case, here is a quick breakdown:

What: A series of Open Source modules that allow you, the tester, to better understand an applications security profile.

Why: It’s a known fact that black-box assessments won’t result in all the possible vulnerabilities being discovered. A hybrid approach is needed, when applicable source code and access is available.This is where O2 comes into the picture. A more detailed explanation can be found here.

Posted at 10:12 am on November 17, 2009 | 1 comment | Filed Under: Mutterings | Tagged: , , , | Continue reading