Feed Sign in with OpenID OpenID

Simon Willison’s Weblog

3 items tagged “owasp”

OWASP: XSS Prevention Cheat Sheet. Comprehensive set of rules for avoiding XSS—there’s a bit more to it than just escaping all output variables, since you have to take markup context in to account. 0 24th January 2009, 11:58 pm

Hashing client-side data

Via Scott, a clever PHP technique for ensuring data sent to the browser as a cookie or hidden form variable isn’t tampered with by the user: [... 248 words]

11:53 pm / 8th February 2003 / 0 / hashing, owasp, php, scottjohnson, security

OWASP Security guide

The Open Web Application Security Project (OWASP) have a free guide to building secure web applications, which covers a large range of common problems such as cross site scripting and SQL injection vulnerabilities. The report is a 60 page PDF and although I haven’t had time to go through it yet it looks like an excellent read. [... 74 words]

9:19 pm / 24th November 2002 / 0 / owasp, security

Related: security, xss, markup, scottjohnson, php

owasp on del.icio.us, Flickr, Technorati

Feed Feed for this tag

Search this site for "owasp"

A django site