14Feb/100

Found: Nice OWASP Top 10 Cheat Sheet

I discovered this very useful, developer-centric cheat sheet for the OWASP Top 10 for 2010 (go directly to the pdf). It's nice and concise and gets straight to the simplest code fixes that will work. Memorize it and your code will be better than it was before. Better, stronger, faster...

Here's the current OWASP 2010 Top 10 list (this is release candidate 1, so it could change):

  1. Injection
  2. Cross Site Scripting (XSS)
  3. Broken Authentication and Session Management
  4. Insecure Direct Object References
  5. Cross Site Request Forgery (CSRF)
  6. Security Misconfiguration
  7. Failure to Restrict URL Access
  8. Unvalidated Redirects and Forwards
  9. Insecure Cryptographic Storage
  10. Insufficient Transport Layer Protection

If you are a developer and you don't know what some of these security risks are OWASP top 10 cheat sheetand how to avoid them in your code, then you should be reading this: OWASP Top 10 2010 RC1 (pdf).

Filed under: Security Leave a comment
Comments (0) Trackbacks (0)

No comments yet.


Leave a comment


No trackbacks yet.

« Martin Odersky and Josh Suereth at Scala BASE Tonight Looking Forward to HTML5 »
twitter delicious
safe to click,
no evil Javascript on these links

Menu

Ubuntu Linux

Gentoo Linux

LinuxChix button

Recent Posts