This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org

User talk:Amber Marfatia

From OWASP
Revision as of 06:48, 18 March 2011 by Amber Marfatia (talk | contribs)

Jump to: navigation, search

Welcome to OWASP! We hope you will contribute much and well. You will probably want to read the help pages. Again, welcome and have fun! KateHartmann 17:15, 31 January 2011 (UTC)

Purpose of the framework - Enhancing Security Options Framework (ESOP Framework)

Purpose of the framework is to provide a security layer to a given web application / web site via web service which can use the functions / modules to protect the site from following vulnerabilities:


1. Remote code execution

2. SQL injection

3. Format string vulnerabilities

4. Cross Site Scripting (XSS)

5. Session hacking

6. Denial of service (DoS) attacks

7. Eavesdropping /Sniffing/ Phishing

8. Identity Spoofing

9. Man-in-the-Middle Attacks

10. Username enumeration

     1. Instrumentation & Audits for:

     2. Critical Business Areas

     3. User Management

     4. Un-usual activities

     5. Interfaces Integrations

11. IIS Tweaks

12. Password Policy


Road map for achieving the said framework is provided in the next section.

Retrieved from "https://wiki.owasp.org/index.php?title=User_talk:Amber_Marfatia&oldid=107150"