OWASP (The Open Web Application Security Project)
What is OWASP?
OWASP (The open web application security project) is a nonprofit group dedicated to web application security. They provide free tools and projects to help developers find possible threats in their software so they can patch security issues before it is too late. Many other organizations use their tools and projects to make sure they are building secure applications.
OWASP also has a list of top 10 vulnerabilities to look out for when developing software. This list is updated every three years by OWASP and it shows what web application security issues are most used in attacks at the moment.
The last one was published in 2021 and contains the following:
- A01 Broken access control
- A02 Cryptographic failures
- A03 Injection
- A04 Insecure design
- A05 Security misconfiguration
- A06 Vulnerable and outdated components
- A07 Identification and authentication failures
- A08 Software and data integrity failures
- A09 Security logging and monitoring failures
- A10 Server-side request forgery (SSRF)
Subscribe and stay updated
Insightful articles, data-driven research, and more cyber security focussed content to your inbox every week.
By registering, you confirm that you agree to Netacea's privacy policy.