This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org
Difference between revisions of "OWASP Cheat Sheet Series"
From OWASP
m (Add Ruby On Rails CS update) |
m (Add next tasks on CS) |
||
Line 116: | Line 116: | ||
= Roadmap = | = Roadmap = | ||
+ | |||
+ | '''Global:''' | ||
* Bring all cheat sheets out of draft. | * Bring all cheat sheets out of draft. | ||
Line 122: | Line 124: | ||
* Find a way to automate the generation of a PDF referential file gathering all CS. | * Find a way to automate the generation of a PDF referential file gathering all CS. | ||
* Go through the cheat sheets to make sure they follow the CS guideline. | * Go through the cheat sheets to make sure they follow the CS guideline. | ||
+ | |||
+ | |||
+ | '''Next work on Cheat Sheets (CS):''' | ||
+ | |||
+ | * [[Insecure_Direct_Object_Reference_Prevention_Cheat_Sheet|Insecure Direct Object Reference Prevention]] CS: | ||
+ | ** Update it in order to add relation with Access Control and how to prevent this kind of issue. | ||
+ | * Server Side Request Forgery Defense CS: | ||
+ | ** Create it. | ||
+ | * [[Forgot_Password_Cheat_Sheet|Forgot Password]] CS: | ||
+ | ** Add a POC in order to provide actionable code. | ||
+ | * [[Password_Storage_Cheat_Sheet|Password Storage]] CS: | ||
+ | ** Add a POC in order to provide actionable code about Argon2 usage. | ||
+ | * [[OS_Command_Injection_Defense_Cheat_Sheet|OS Command Injection Defense]] CS: | ||
+ | * Add information about system command escaping. | ||
= Cheat sheet Guideline = | = Cheat sheet Guideline = |