|OSVDB Synopsis||OSVDB Project Profile||OSVDB Leaders|
OSVDB is an independent and open sourced web-based vulnerability database created for the security community. The goal of the project is to provide accurate, detailed, current, and unbiased technical information on security vulnerabilities. The project hopes to provide a truly comprehensive vulnerability database with extended features to better facilitate searching, information classification, and references.
|OSVDB Project Profile||top|
Founded in August 2002 at the Black Hat and Defcon conferences, OSVDB was originally created to provide an independent and Open Source Vulnerability DataBase. The goal was to provide accurate, detailed, current, and unbiased technical information about all types of vulnerabilities.
At the Defcon conference in August 2003, the project leadership changed, and OSVDB began to build considerable momentum. OSVDB continued to grow as processes were streamlined and key individuals were recruited to help ensure the project's success. On March 31, 2004, the Open Source Vulnerability Database opened for public use. During the next few months, the project gained significant acceptance and recognition. This led to the creation of the 501(c)3 non-profit Open Security Foundation (OSF) to ensure OSVDB's long-term viability.
Over the next 8 years, contributions from the security community failed to materialize. To this day, over 99% of the database content and contributions come from a very few dedicated volunteers, OSF officers, or employees hired by OSF / RBS. As of early 2012, OSVDB officially dropped the 'Open Source' title, and rebranded to the more accurate 'Open Sourced' which is in keeping with the original intent, and to make it clear that the project has had to move away from the most traditional 'open source' model in order to sustain itself.
|OSVDB Project Leaders||top|
- Jake is the co-founder and CEO of the Open Security Foundation which oversees the operations of the Open Sourced Vulnerability Database (OSVDB). Kouns' primary focus is to provide management oversight, vendor relations and define the strategic direction the project. He holds both a Bachelor of Business Administration with a concentration in Computer Information Systems and a Master of Business Administration with a concentration in Information Security from James Madison University. He also holds numerous certifications including ISC2's CISSP, ISACA's CISM and CISA.
- Brian is the Content Manager and the most active contributor to the content of the database historically. He has provided a great deal of enhancement ideas and direction for pushing the evolution of the project. In addition, Brian is President and COO of the Open Security Foundation. By day, Brian is a senior analyst for a security software company. By night, he is the security curmudgeon; defender of trampled consumers and self appointed auditor of the security industry. When not scouring changelogs and bug tracking systems for new vulnerability information, he is a champion for small misunderstood creatures.
Steve Tornio - Steve is a network engineer and has spent the last seven years designing and implementing secure LAN, WAN and Internet solutions for a multinational capital management firm based in the Midwest. His interest in OSVDB was sparked by an email to an attrition.org mail list, and he joined the project as a data mangler several months before the project went live. Since that time, he has become a core member of the team, taking on additional responsibilities as a Moderator, and recently as email administrator.