New posts in Owasp

Is the OWASP recommendation regarding localstorage still valid?

Is OWASP ESAPI still the recommended way to secure JSP pages

Why does OWASP suggest using POST over PUT for file uploads?

Why OWASP Top 10 (web application) hasn't changed since 2013 but Mobile Top 10 is as recent as 2016?

Canonicalization & Output Encoding

iOS certificate pinning with Swift and NSURLSession

Why is it common to put CSRF prevention tokens in cookies?

What is "X-Content-Type-Options=nosniff"?

How to allow specific characters with OWASP HTML Sanitizer?

CSRF, XSS and SQL Injection attack prevention in JSF