Categories
Research|Computer & Network Security>Vulnerabilities

OWASP Top 10 For Developers


Troy Hunt wrote a great series on the OWASP top 10 for developers.  This series is a few  years old, but still completely relevant since the OWASP top 10 has remained the same for a while.

OWASP Top 10 for .NET developers series

1. Injection
2. Cross-Site Scripting (XSS)
3. Broken Authentication and Session Management
4. Insecure Direct Object References
5. Cross-Site Request Forgery (CSRF)
6. Security Misconfiguration
7. Insecure Cryptographic Storage
8. Failure to Restrict URL Access
9. Insufficient Transport Layer Protection
10. Unvalidated Redirects and Forwards
Categories
Research|Computer & Network Security>Vulnerabilities

Real Time Cyber Attack Viewer


Categories
Research|Computer & Network Security>Vulnerabilities

New OWASP top 10 shows same mistakes


OWASP is an organization that tracks most common web vulnerabilities and gives guidance for writing secure applications.  They have released the New Top 10.  Unfortunately, it is not that much different than the old top 10.  Does this mean that most web developers don’t know about the most common security risks?

Read more here