OWASP Cheat Sheets

Introduction This document has for objective to provide some tips to handle Injection into Java application code. Sample codes used in tips...

Introduction This article is focused on providing clear, simple, actionable guidance for providing Input Validation security functionality in your applications....

Introduction Insecure Direct Object Reference (called IDOR from here) occurs when a application exposes a reference to an internal implementation object. Using this way, it...

Introduction – What is JAAS authentication The process of verifying the identity of a user or another system is authentication....

Introduction Many applications use JSON Web Tokens (JWT) to allow the client to indicate its identity for further exchange after authentication. From JWT.IO:...

Introduction Docker is the most popular containerization technology. Upon proper use, it can increase the level of security (in comparison...

Introduction This Key Management Cheat Sheet provides developers with guidance for implementation of cryptographic key management within an application in...

Introduction This page intends to provide quick basic .NET security tips for developers. The .NET Framework The .NET Framework is...

Kubernetes Kubernetes is an open source container orchestration engine for automating deployment, scaling, and management of containerized applications. The open...

Introduction Error handling is a part of the overall security of an application. Except in movies, an attack always begins...