Simon Willison’s Weblog

OWASP Security guide

24th November 2002

The Open Web Application Security Project (OWASP) have a free guide to building secure web applications, which covers a large range of common problems such as cross site scripting and SQL injection vulnerabilities. The report is a 60 page PDF and although I haven’t had time to go through it yet it looks like an excellent read.

Posted 24th November 2002 at 9:19 pm · Follow me on Mastodon, Bluesky, Twitter or subscribe to my newsletter

More recent articles

What happens if AI labs train for pelicans riding bicycles? - 13th November 2025
Reverse engineering Codex CLI to get GPT-5-Codex-Mini to draw me a pelican - 9th November 2025
Video + notes on upgrading a Datasette plugin for the latest 1.0 alpha, with help from uv and OpenAI Codex CLI - 6th November 2025

This is OWASP Security guide by Simon Willison, posted on 24th November 2002.

owasp 4 security 566 sql-injection 16

Next: Taxomita

Previous: phpPatterns

Monthly briefing

Sponsor me for $10/month and get a curated email digest of the month's most important LLM developments.

Pay me to send you less!

Sponsor & subscribe

Previously hosted at http://simon.incutio.com/archive/2002/11/24/owaspGuide