This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org
Difference between revisions of "Category:OWASP Top Ten 2017 Project"
m (Updated to 'whatsNextforSecurityTesters') |
(Prepare OWASP Top 10-2017 Release (Content)) |
||
| Line 1: | Line 1: | ||
{{Top_10_2013:TopTemplate | {{Top_10_2013:TopTemplate | ||
| − | + | |useprev=Nothing | |
| − | + | |prev= | |
| − | + | |usenext=2017NextLink | |
| − | + | |next={{Top_10:LanguageFile|text=foreword|year=2017|language=en}} | |
| − | + | |year=2017 | |
| − | + | |language=en | |
}} | }} | ||
| − | {{Top_10:SubsectionTableBeginTemplate|type=main}} {{Top_10_2010:SubsectionAdvancedTemplate|type={{Top_10_2010:StyleTemplate}}|subsection=freetext|position= | + | {{Top_10:SubsectionTableBeginTemplate|type=main}} {{Top_10_2010:SubsectionAdvancedTemplate|type={{Top_10_2010:StyleTemplate}}|subsection=freetext|position=firstLeft|title={{Top_10:LanguageFile|text=tableOfContents|language=en}}|width=100%|year=2017|language=en}} |
<!--- * [[{{Top_10:LanguageFile|text=documentRootTop10New|language=en|year=2017 }}]] ---> | <!--- * [[{{Top_10:LanguageFile|text=documentRootTop10New|language=en|year=2017 }}]] ---> | ||
* [[{{Top_10:LanguageFile|text=documentRootTop10New|language=en|year=2017 }}_{{Top_10:LanguageFile|text=foreword|year=2017|language=en}}| {{Top_10:LanguageFile|text=foreword|year=2017|language=en}}]] | * [[{{Top_10:LanguageFile|text=documentRootTop10New|language=en|year=2017 }}_{{Top_10:LanguageFile|text=foreword|year=2017|language=en}}| {{Top_10:LanguageFile|text=foreword|year=2017|language=en}}]] | ||
| Line 34: | Line 34: | ||
* [[{{Top_10:LanguageFile|text=documentRootTop10New|language=en|year=2017 }}_{{Top_10:LanguageFile|text=acknowledgements|language=en}} | {{Top_10:LanguageFile|text=acknowledgements|language=en}}]] | * [[{{Top_10:LanguageFile|text=documentRootTop10New|language=en|year=2017 }}_{{Top_10:LanguageFile|text=acknowledgements|language=en}} | {{Top_10:LanguageFile|text=acknowledgements|language=en}}]] | ||
| − | {{ | + | <!--- O About OWASP ---> |
| − | {{Top_10_2013: | + | {{Top_10_2010:SubsectionAdvancedTemplate|type={{Top_10_2010:StyleTemplate}}|subsection=freetext|position=right|title=About OWASP|year=2017|language=en}} |
| − | + | The Open Web Application Security Project (OWASP) is an open community dedicated to enabling organizations to develop, purchase, and maintain applications and APIs that can be trusted. | |
| − | + | At OWASP, you'll find free and open: | |
| − | + | * Application security tools and standards. | |
| − | + | * Complete books on application security testing, secure code development, and secure code review. | |
| − | + | * Presentations and <u>[https://www.youtube.com/user/OWASPGLOBAL videos]</u>. | |
| − | + | * <u>[[OWASP_Cheat_Sheet_Series|Cheat sheets]]</u> on many common topics. | |
| + | * Standard security controls and libraries. | ||
| + | * <u>[[OWASP_Chapter|Local chapters worldwide]]</u>. | ||
| + | * Cutting edge research. | ||
| + | * Extensive <u>[[:Category:OWASP_AppSec_Conference|conferences worldwide]]</u>. | ||
| + | * <u>[https://lists.owasp.org/mailman/listinfo Mailing lists]</u>. | ||
| + | Learn more at: <u>[https://www.owasp.org https://www.owasp.org]</u>. | ||
| + | |||
| + | All OWASP tools, documents, videos, presentations, and chapters are free and open to anyone interested in improving application security. | ||
| + | |||
| + | We advocate approaching application security as a people, process, and technology problem, because the most effective approaches to application security require improvements in these areas. | ||
| + | |||
| + | OWASP is a new kind of organization. Our freedom from commercial pressures allows us to provide unbiased, practical, and cost-effective information about application security. | ||
| + | |||
| + | OWASP is not affiliated with any technology company, although we support the informed use of commercial security technology. OWASP produces many types of materials in a collaborative, transparent, and open way. | ||
| + | |||
| + | The OWASP Foundation is the non-profit entity that ensures the project's long-term success. Almost everyone associated with OWASP is a volunteer, including the OWASP board, chapter leaders, project leaders, and project members. We support innovative security research with grants and infrastructure. | ||
| + | |||
| + | Come join us! | ||
| + | |||
| + | {{Top_10_2013:BottomAdvancedTemplate | ||
| + | |type=box | ||
| + | |useprev=Nothing | ||
| + | |prev= | ||
| + | |usenext=2017NextLink | ||
| + | |next={{Top_10:LanguageFile|text=foreword|year=2017|language=en}} | ||
| + | |year=2017 | ||
| + | |language=en | ||
}} | }} | ||
| + | |||
| + | <!-- [[Category:OWASP Top Ten Project]] --> | ||
Revision as of 23:57, 16 December 2017
| Foreword → |
|
Table of Contents
|
About OWASP
The Open Web Application Security Project (OWASP) is an open community dedicated to enabling organizations to develop, purchase, and maintain applications and APIs that can be trusted. At OWASP, you'll find free and open:
Learn more at: https://www.owasp.org. All OWASP tools, documents, videos, presentations, and chapters are free and open to anyone interested in improving application security. We advocate approaching application security as a people, process, and technology problem, because the most effective approaches to application security require improvements in these areas. OWASP is a new kind of organization. Our freedom from commercial pressures allows us to provide unbiased, practical, and cost-effective information about application security. OWASP is not affiliated with any technology company, although we support the informed use of commercial security technology. OWASP produces many types of materials in a collaborative, transparent, and open way. The OWASP Foundation is the non-profit entity that ensures the project's long-term success. Almost everyone associated with OWASP is a volunteer, including the OWASP board, chapter leaders, project leaders, and project members. We support innovative security research with grants and infrastructure. Come join us! |
| Foreword → |
Subcategories
This category has only the following subcategory.
O
Pages in category "OWASP Top Ten 2017 Project"
The following 24 pages are in this category, out of 24 total.
T
- Top 10-2017 A1-Injection
- Top 10-2017 A10-Insufficient Logging&Monitoring
- Top 10-2017 A2-Broken Authentication
- Top 10-2017 A3-Sensitive Data Exposure
- Top 10-2017 A4-XML External Entities (XXE)
- Top 10-2017 A5-Broken Access Control
- Top 10-2017 A6-Security Misconfiguration
- Top 10-2017 A7-Cross-Site Scripting (XSS)
- Top 10-2017 A8-Insecure Deserialization
- Top 10-2017 A9-Using Components with Known Vulnerabilities
- Top 10-2017 Acknowledgements
- Top 10-2017 Application Security Risks
- Top 10-2017 Details About Risk Factors
- Top 10-2017 Foreword
- Top 10-2017 Introduction
- Top 10-2017 Methodology and Data
- Top 10-2017 Note About Risks
- Top 10-2017 Release Notes
- Top 10-2017 Top 10
- Top 10-2017 What's Next for Application Managers
- Top 10-2017 What's Next for Developers
- Top 10-2017 What's Next for Organizations
- Top 10-2017 What's Next for Security Testers
