| OWASP Top 10:2021 |
https://owasp.org/Top10/2021/ |
OWASP Top 10 |
2026-02-14 |
| OWASP Cheat Sheet Series |
https://cheatsheetseries.owasp.org/ |
All sections |
2026-02-14 |
| OWASP XSS Prevention Cheat Sheet |
https://cheatsheetseries.owasp.org/cheatsheets/Cross_Site_Scripting_Prevention_Cheat_Sheet.html |
Output Encoding, XSS, XSS Prevention |
2026-02-14 |
| OWASP Input Validation Cheat Sheet |
https://cheatsheetseries.owasp.org/cheatsheets/Input_Validation_Cheat_Sheet.html |
Input Validation |
2026-02-14 |
| OWASP SQL Injection Prevention Cheat Sheet |
https://cheatsheetseries.owasp.org/cheatsheets/SQL_Injection_Prevention_Cheat_Sheet.html |
SQL Injection |
2026-02-14 |
| OWASP CSRF Prevention Cheat Sheet |
https://cheatsheetseries.owasp.org/cheatsheets/Cross-Site_Request_Forgery_Prevention_Cheat_Sheet.html |
CSRF Prevention |
2026-02-14 |
| OWASP Authentication Cheat Sheet |
https://cheatsheetseries.owasp.org/cheatsheets/Authentication_Cheat_Sheet.html |
Authentication |
2026-02-14 |
| OWASP Password Storage Cheat Sheet |
https://cheatsheetseries.owasp.org/cheatsheets/Password_Storage_Cheat_Sheet.html |
Authentication |
2026-02-14 |
| OWASP Authorization Cheat Sheet |
https://cheatsheetseries.owasp.org/cheatsheets/Authorization_Cheat_Sheet.html |
Authorization |
2026-02-14 |
| OWASP Cryptographic Storage Cheat Sheet |
https://cheatsheetseries.owasp.org/cheatsheets/Cryptographic_Storage_Cheat_Sheet.html |
Sensitive Data, Cryptography |
2026-02-14 |
| OWASP Secure Headers Project |
https://owasp.org/www-project-secure-headers/ |
Security Headers |
2026-02-14 |
| OWASP HTTP Headers Cheat Sheet |
https://cheatsheetseries.owasp.org/cheatsheets/HTTP_Headers_Cheat_Sheet.html |
Security Headers |
2026-02-14 |
| OWASP API Security Top 10 |
https://owasp.org/www-project-api-security/ |
API Security |
2026-02-14 |
| OWASP REST Security Cheat Sheet |
https://cheatsheetseries.owasp.org/cheatsheets/REST_Security_Cheat_Sheet.html |
API Security |
2026-02-14 |
| OWASP File Upload Cheat Sheet |
https://cheatsheetseries.owasp.org/cheatsheets/File_Upload_Cheat_Sheet.html |
File Upload |
2026-02-14 |
| OWASP Logging Cheat Sheet |
https://cheatsheetseries.owasp.org/cheatsheets/Logging_Cheat_Sheet.html |
Logging |
2026-02-14 |
| OWASP SAMM |
https://owaspsamm.org/ |
Secure Development Lifecycle |
2026-02-14 |
| OWASP ASVS |
https://owasp.org/www-project-application-security-verification-standard/ |
Checklist, Code Reference |
2026-02-14 |
| CWE-79: Cross-site Scripting |
https://cwe.mitre.org/data/definitions/79.html |
XSS |
2026-02-14 |
| CWE-89: SQL Injection |
https://cwe.mitre.org/data/definitions/89.html |
SQL Injection |
2026-02-14 |
| Microsoft Security Development Lifecycle |
https://www.microsoft.com/en-us/securityengineering/sdl |
Secure Development Lifecycle |
2026-02-14 |
| Content Security Policy - MDN |
https://developer.mozilla.org/en-US/docs/Web/HTTP/Guides/CSP |
XSS Prevention, Security Headers |
2026-02-14 |
| SameSite cookies explained |
https://web.dev/articles/samesite-cookies-explained |
CSRF Prevention |
2026-02-14 |
| OAuth 2.0 Security BCP RFC 9700 |
https://www.rfc-editor.org/rfc/rfc9700.html |
Authentication |
2026-02-14 |
| DOMPurify |
https://github.com/cure53/DOMPurify |
XSS Prevention |
2026-02-14 |
| Bleach (Python) |
https://bleach.readthedocs.io/ |
XSS Prevention |
2026-02-14 |
| Cryptography library (Python) |
https://cryptography.io/ |
Cryptography |
2026-02-14 |
| Dark Reading - Supply Chain Worms 2026 |
https://www.darkreading.com/cyberattacks-data-breaches/supply-chain-worms-in-2026-what-shai-hulud-taught-attackers-and-how-to-prepare |
Dependency Security |
2026-02-14 |
| Sonatype 2026 Software Supply Chain Report |
https://www.sonatype.com/state-of-the-software-supply-chain/2026 |
Dependency Security |
2026-02-14 |
| MDN Web Security |
https://developer.mozilla.org/en-US/docs/Web/Security |
Security Headers |
2026-02-14 |
| OWASP Threat Modeling Process |
https://owasp.org/www-community/Threat_Modeling_Process |
Security Mindset |
2026-02-14 |