OWASP Navigation

Archive for June, 2007

Internal refactoring

Tuesday, June 19th, 2007

I think Spoc will now sound as Summer owasP of code since start of summer is very close and project isn’t started yet :)
While I’m waiting about this, I’m working hard in refactoring org.owasp.orizon.core objects, in particular I’m working over Source object that will substitute OrizonSource. In fact there is no need to having such a naming convention for Orizon objects.

I’m confident I will release a version 0.30 at the end of July, before leaving Milan and start working over Milk that will be the first tool using orizon as base

Posted in Orizon hacking | No Comments »

Library and recipes?

Thursday, June 14th, 2007

As you may see from the online code browsing facility, library package has been added to Orizon.

Thinking about how to organize security checks, I decided to define a ZIP file as library file, containing one or more XML files as security checks recipes.
I wanted to describe to harden the code as to make a cake… my birthday is just 2 days ahead however…

I started in these days to collect which are security suggestions to make a java code hardened and a new version of security check library will be available soon… just the time to decide which is the best XML schema describing my recipes.

In These Arms from the album “Keep The Faith” by Bon Jovi

Posted in Orizon hacking | No Comments »

Orizon live! :)

Thursday, June 7th, 2007

Available from Orizon Sourceforge page you can find:

  • Java2XMLDemo.java that shows API for translating JAVA source in XML
  • orizon_java2xml_demo.mpeg that shows live a demontration about how to compile Java2XMLDemo with Orizon and how to run it. It weights 12MB so please take care of this before downloading

That’s all by now… I’ll go back to work in translation issues and XML parsing routines.

Cheers
thesp0nge

Posted in Orizon hacking, Orizon announce | No Comments »

Orizon v0.25

Wednesday, June 6th, 2007

Just update Orizon site with a new logo (very web 2.0 aware) and new downloads.

I decided to split down bastion from orizon but maintaining the same version number. I choose this way in order to separate hardening from code review. I added also javadoc links to the SourceForge site…

By now, I’m so tired… and I’m feeling not well at all… maybe it’s this raining evening that makes me so blue…

Posted in Orizon announce | No Comments »

Take care of users…

Sunday, June 3rd, 2007

A friend from Owasp Italy, during an event last week in Florence said to me: “Yeah, I downloaded Orizon weeks ago but I can’t figure out how to play with it”.

This is true… people download a JAR file but help is missing in how to use the JAR itself.

I’m working over a mini lessons about core objects I’m implementing in Orizon, showing framework capabilities…

Posted in Orizon hacking | No Comments »