45 lines (23 loc) · 2.37 KB

OWASP Top Ten

This page is still under construction !!! PRs are welcome!

Objective

The OWASP Top Ten is a standard awareness document for developers and web application security. It represents a broad consensus about the most critical security risks to web applications.

This cheat sheet will help users of the OWASP Top Ten identify which cheat sheets map to each security risk. This mapping is based the OWASP Top Ten 2021 version .

A01:2021 – Broken Access Control

Access Control Cheat Sheet

A02:2021 – Cryptographic Failures

A03:2021 – Injection

A04:2021 – Insecure Design

A05:2021 – Security Misconfiguration

A06:2021 – Vulnerable and Outdated Components

Vulnerable Dependency Management Cheat Sheet

Third Party JavaScript Management Cheat Sheet

npm Security best practices

A07:2021 – Identification and Authentication Failures

A08:2021 – Software and Data Integrity Failures

A09:2021 – Security Logging and Monitoring Failures

Logging Cheat Sheet

Application Logging Vocabulary Cheat Sheet

A10:2021 – Server-Side Request Forgery (SSRF)

Server Side Request Forgery Prevention Cheat Sheet

A11:2021 – Next Steps