Anti-XSS -- What is meant by "Medium Level Projects?"

Anti-XSS -- What is meant by "Medium Level Projects?"

I am looking for a tool to use as I try and document the various forms of vulnerabilities my website has. And I see the following:

OWASP Xenotix XSS Exploit Framework anti-XSS and Medium Level Projects

https://www.owasp.org/index.php/OWASP_Xenotix_XSS_Exploit_Framework#tab=Main

What is meant by "Medium Level Projects?"

Thanks
newbiewebSr. Software EngineerAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Jackie ManCommented:
What is meant by "Medium Level Projects?"

The level of projects refers to the OWASP Project Stages.

https://www.owasp.org/index.php/OWASP_Project_Stages#tab.3DLab_Projects

From the above link, it says:-

Our lifecycle stages allow consumers to easily identify mature projects, and projects that are proofs of concept, experimental, and classified as prototypes in their current state. The greater the maturity of the project, the greater the level of responsibility for the project leader. These responsibilities are not trivial as OWASP provides incentives and benefits for projects who take on these added responsibilities.

The OWASP Project Lifecycle is broken down into the following stages:

OWASP Incubator Projects
OWASP Labs Projects
OWASP Flagship Projects

OWASP Xenotix XSS Exploit Framework anti-XSS is a Labs project which means it is a medium level project from the above lifecycle.

Incubator Projects -> Low
Labs Projects -> Medium
Flagship Projects -> High
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
btanExec ConsultantCommented:
As Jackie mentioned, there are various category in which OWASP tools, document, and code library projects are organized and if you needed higher assurance then Flagship is preferred otherwise for stage testing, Lab tool can be considered. Will try to avoid Incubator unless you have and is development centric  
Flagship Projects: The OWASP Flagship designation is given to projects that have demonstrated strategic value to OWASP and application security as a whole.

Lab Projects: OWASP Labs projects represent projects that have produced an OWASP reviewed deliverable of value.

Incubator Projects: OWASP Incubator projects represent the experimental playground where projects are still being fleshed out, ideas are still being proven, and development is still underway.
0
newbiewebSr. Software EngineerAuthor Commented:
thanks
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Web Development

From novice to tech pro — start learning today.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.