OWASP O2 Platform Blog

How to use the Console output in the C# REPL

The VisualStudio C# REPL РO2 Platform can be downloaded here. From the download link you get a Visual Studio Extension (.vsix file extension).


Since this REPL is a great tool for developers, I wanted to use the Console output feature, the following code snippet shows how to achieve this functionability:

var topPanel = "Util - ConsoleOut".popupWindow(500,300);
Console.WriteLine("This text should be displayed in the Console");

This code produces the following output:


This is a powerful (and easy) feature that can help us to take advantage of the time ūüôā

November 9, 2012 Posted by | .NET, Uncategorized, VisualStudio | , , | Leave a comment

The latest version of OWASP O2 Platform is available: Your feedback is appreciated!

The latest version of OWASP¬† O2 Platform ( version 4.3) is now available for downloads. In the below screenshot (taken from the Dinis Cruz’s blog) you can see all this information:

O2 Platform latest version

O2 Platform latest version

In this image you can see that the download link is : http://tiny.cc/O2Platform.

One of our ideals is to build a strong platform that helps people and organizations to create secure applications, therefore we would like to hear from you. We would like to know what do you think about it, do you think we could provide more documentation and¬† examples about the usage of O2? . Let us know about it and we’ll be happy to receive your feedback.

October 4, 2012 Posted by | Uncategorized | | Leave a comment

OWASP O2 Platform Presentation : A good starting point.

If you didn’t realize there is a OWASP O2 presentation, I would like to provide the links with very helpful information. The title of this presentation is: OWASP O2 Platform – Automating Security Knowledge through Unit Tests , created by Dinis Cruz.
You can access to this slides from two places:

  1. From Speaker Deck at https://speakerdeck.com/u/diniscruz/p/owasp-o2-platform-automating-security-knowledge-through-unit-tests
  2. From Dinis Cruz’s blog :http://diniscruz.blogspot.co.uk/p/owasp-o2-platform.html

I wanted to provide this information because I have seen positive comments from some of my colleagues in Costa Rica, after looking at the presentation, most of those folks saw the magic  and power of O2 Platform.

The below image shows the first slide:

Enjoy it!

August 9, 2012 Posted by | Uncategorized | , , | Leave a comment

Installing O2’s Visual Studio Add-in, Script environment in Visual Studio IDE

Here is a video on how can we install the OWASP O2 add-in on top of VisuaL Studio , the video can be found at:


By the way, the Visual Studio add-in is located in your local copy of OWASP O2 Platform, in the O2.Platform.Projects folder there should be a  Visual Studio Project named O2.VisualStudio.AddIn . The .AddIn file can be found in the binaries folder.

Visual Studio Addin

Visual Studio Addin

Once you have installed  the Add-in, you will be able to use this powerful tool on top of Visual Studio IDE.

May 25, 2012 Posted by | .NET, Uncategorized, VisualStudio | , , | 1 Comment

The need of supporting REST Services on top of OWASP O2 Platform

I have been talking to Dinis Cruz   about the importance of supporting REST Services on top of OWASP O2 Platform. Web Services, now a days, are a strong platform in software engineering and looking at the future, it is going to be even stronger than now.

But, what is REST and why should we embrace it?

REST stands for Representational State Transfer, a term coined by Roy Thomas Fielding  in 2000 as a part of his dissertation. So as you can see this is not a new topic, but I would say it has been  broadly embraced during the last years by the industry. REST is not an architecture, but it is an architectural style to build services on top of the Web, it is basically a set of constraints based on the core principles of the WEB. REST uses all the strengths of the WEB that have made it the most distributable and interoperable system.

Web Services are not a new topic, people (even those outside of the computing world) have been using this word to refer themselves to interoperability and accessibility, specifically in business, where this topic as been adopted as a platform to provide information around the world.

But we are always looking for a better approach,  a best way to provide solutions, with low-cost and with reasonable responses times to the end-user and of course we are also concerned about security

Interoperatibility, Scalability , Performance and Security :A combination of topics that we would like to achieve.

REST Services  take advantage of the WEB , using the principles defined to make it the most  distributed system, rather than focus on actions (like SOAP), it uses all the HTTP verbs to interact with resources  and it does not relay only in HTTP POST. The need of creating more scalable  services is a challenge everyday, specifically because we are moving to the mobile world and we have some limitations that force us to use a better approach to improve the user experience.

But we are not just concern about performance, we are also concerned about security. If you are thinking why a person would attack a web services, then I would say that due to the interoperability and the data exchange performed in Web Services, the attacker would expect to find any way to get into the back-end system or steal any kind of information.  Having said that, we would like a mechanism  add value with O2 Platform into the REST world.

How could we integrate REST Services on top of O2 Platform?

I’m happy to say that we are currently supporting OData Services in O2 Platform . OData is short for The Open Data Protocol and¬†is consistent with the way the Web works.¬† Dinis¬† added support for OData in O2. This is an important step because we are able to work not only with SOAP based Web Services but also with REST Services which increase all our coverage in the Web Services world.

The  next steps would be to write use cases and probably some automation work and  Unit Testings that increases the support of REST in  O2 Platform.

May 12, 2012 Posted by | Uncategorized | , , , | Leave a comment