Small Businesses are using more open source security software to protect their organization. While open source software offers many advantages, the greatest advantage is the cost of implementation. In this series, we will explore many different applications that help to protect a company's network including organizations that help to oversee the implementation of security applications.
The use of open security application software is growing at an unprecedented rate. The Open Web Application Security Project or OWASP is a free and open global community that is founded on improving security of software. OWASP is a 501c3 non-profit organization. The primary mission of this organization
is to make organizations and the community aware of security risk found in applications. OSWAP also builds materials which include teaching environments, guidelines, tools and documents to help individuals and organizations improve their code.
Many of the documents and guides they produce include information hundreds of articles on all major security issues in Building Secure Web Applications and Services. To supplement the creation of these applications and services, OWASP has guides on performing penetration tests on web applications and web services. These documents again are supplemented by a Code Review Guide that provides guidance in looking through the source code of web applications.
OWASP has several areas that provide information on open source and applications that include put are not limited to: Principles, Threat Agents, Attacks, Vulnerabilities, Controls, Activities, Technologies, Projects and Code Snippets.
OWASP offers a membership program for academic institutions, individuals, companies and other organization. Chapters are found around the world with several thousand members along with Fortune 500 companies.
The Open Web Application Security Project contains hundreds of applications that include presentations and videos that are reviewed by senior security personal. These presentations give the end user the power to review industry professionals’ information about open security projects.
The use of open source security applications is becoming more popular. In this series we will look into Nessus, Snort, ClamAV and other applications.
While SourceForge.net and other websites offer free software under
open licenses, corporations primarily look at cost. The cost corporations face is strictly time and salaries. With many software packages, a primary advantage is the source code. This code allows IT professionals to customize the software. The code provides the tools allow the security professionals to have control over their network security.