OWASP/CheatSheetSeries

Issues

• Chore: Optimise Dockerfile for build cache

  #1627 opened 14 days ago by benhovinga
  0

• Drop IE requirements from Clickjacking

  #1636 opened 14 days ago by jmanico
  0

• Update: PBKDF2 work factors increased

  #1580 opened 3 months ago by KevinAtSesam
  15

• Update: Cookie Theft Mitigation Cheat Sheet - Factual error

  #1631 opened 21 days ago by SublimePeace
  3

• Top 10 Browser Extension Security Vulnerabilities

  #1516 opened 6 months ago by paragbagul111
  6

• Update: Session Management - caching guidelines

  #1499 opened 6 months ago by SnowdenWintermute
  3

• Suggest a powerful free and open source WAF - UUSEC WAF

  #1629 opened 23 days ago by Safe3
  5

• Bug: File extension in sidebar (Drone_security_sheet.md)

  #1625 opened a month ago by benhovinga
  2

• Update: NodeJS_Docker_Cheat-Sheet

  #1620 opened a month ago by jtcmedia
  3

• Update: Authorization_Cheat_Sheet.md

  #1563 opened a month ago by brandonaltermatt
  2

• Update: JSON_Web_Token_for_Java_Cheat_Sheet

  #1458 opened 8 months ago by Tib3rius
  12

• New CS proposal: Cookie Theft Detection Cheat Sheet

  #1547 opened 5 months ago by Jxck
  22

• Update: Clickjacking_Defense_Cheat_Sheet.md to address Double Clickjacking

  #1577 opened 3 months ago by kwwall
  5

• Update: C-Based_Toolchain_Hardening_Cheat_Sheet.md

  #1596 opened 2 months ago by tttony
  2

• Update: Node cheatsheet to remove outdated recommendation around Expect-CT header

  #1598 opened 2 months ago by bivens-dev
  0

• Update: Mobile Application Security Cheat Sheet

  #1524 opened 3 months ago by richeeta
  1

• logging vpcab issue not severe enough

  #1561 opened 3 months ago by jmanico
  3

• Update: [Cross_Site_Scripting_Prevention_Cheat_Sheet]

  #1578 opened 3 months ago by mbiesiad
  3

• Update: Authentication_Cheat_Sheet.md

  #1520 opened 6 months ago by NicolaiSoeborg
  4

• Update: [PUT_TARGET_CS_NAME_HERE]

  #1567 opened 4 months ago by ThRiLKiLKuLt
  0

• our @ISA = qw(Exporter); =head1 NAME Fink::Base - basic parameter handling =head1 SYNOPSIS

  #1568 opened 4 months ago by ThRiLKiLKuLt
  0

• Including link:

  #1566 opened 4 months ago by ThRiLKiLKuLt
  0

• Search results

  #1565 opened 4 months ago by ThRiLKiLKuLt
  0

• Update: Forgot Password

  #1538 opened 4 months ago by gl4nce
  11

• Update: [PUT_TARGET_CS_NAME_HERE]

  #1562 opened 4 months ago by ThRiLKiLKuLt
  0

• Update: Secrets Management Cheat Sheet

  #1559 opened 4 months ago by rozpuszczalny
  2

• Update: CSRF Cheat Sheet

  #1558 opened 4 months ago by matt-allan
  5

• Update: Threat Modeling Cheat Sheet - Broken "STRIDE and ATT&CK" Blog Link

  #1555 opened 4 months ago by ody55eus
  1

• Potentially conflicting information in Password Storage: Pre-Hashing Passwords with bcrypt

  #1532 opened 5 months ago by regunakyle
  7

• Question about CDN affect on CSP header -- seeking clarification

  #1534 opened 5 months ago by kwwall
  3

• Update: Recommend Input sanitization as supplementary defense

  #1541 opened 5 months ago by timurozkul
  14

• Update: Password Storage Cheat Sheet

  #1536 opened 5 months ago by nth-block
  3

• Update: CSRF Cheat Sheet

  #1535 opened 5 months ago by cronchie
  1

• Update: [Secrets_Management_Cheat_Sheet.md]

  #1523 opened 5 months ago by aaronkao
  1

• Update: Authentication_Cheat_Sheet

  #1518 opened 5 months ago by chessmadridista
  3

• CSRF Prevention Cheat Sheet Pseudo code example exposes session ID in the case of XSS

  #1493 opened 6 months ago by murshex
  11

• PDF version

  #1512 opened 6 months ago by ufukty
  3

• Update: CSRF Prevention

  #1509 opened 6 months ago by merlinz01
  2

• Update: REST Security Cheat Sheet

  #1508 opened 6 months ago by JoostK
  5

• Update: Bean Validation Cheat Sheet

  #1505 opened 6 months ago by melbeltagy
  2

• Update: Authentication_Cheat_Sheet

  #1506 opened 6 months ago by nobodynate
  1

• Update: Fix filename for "Software Supply Chain Security"

  #1494 opened 6 months ago by runner12434
  4

• New CS proposal: [PUT_TARGET_CS_NAME_HERE]

  #1501 opened 6 months ago by vijaypatel12
  0

• Update: Threat_Modeling_Cheat_Sheet

  #1482 opened 6 months ago by miiiak
  4

• New CS proposal: Cross-organization mTLS

  #1492 opened 7 months ago by MarkSRobinson
  4

• Update: Session_Management_Cheat_Sheet

  #1486 opened 7 months ago by jakekarnes42
  3

• Update: Cross Site Scripting Prevention Cheat Sheet

  #1480 opened 7 months ago by dp-anto
  4

• Update: Session Management Cheat Sheet - Broken "Session Fixation" Black Hat Resource Links

  #1481 opened 7 months ago by rjacobs-CityOfWichita
  2

• Update: Docker_Security_Cheat_Sheet

  #1479 opened 7 months ago by zeronumbers
  1

• Update: Cross_Site_Scripting_Prevention_Cheat_Sheet

  #1456 opened 8 months ago by WeismanGitHub
  0