-
Vulnerable Library - htmlsanitizer.5.0.355.nupkg
Cleans HTML from constructs that can be used for cross site scripting (XSS)
Library home page: https://api.nuget.org/packages/htmlsanitizer.5.0.355.n…
-
The current OWASP Wiki content needs to be cleaned up and translated into the new content format as described in the Leaders meeting at AppSec DC
-
```
Hi folks,
Any chance of including the OWASP Zed Attack Proxy -
https://code.google.com/p/zaproxy ?
Many thanks,
Psiinon
```
Original issue reported on code.google.com by `psii...@gmail.com` o…
-
```
Hi folks,
Any chance of including the OWASP Zed Attack Proxy -
https://code.google.com/p/zaproxy ?
Many thanks,
Psiinon
```
Original issue reported on code.google.com by `psii...@gmail.com` o…
-
```
Hi folks,
Any chance of including the OWASP Zed Attack Proxy -
https://code.google.com/p/zaproxy ?
Many thanks,
Psiinon
```
Original issue reported on code.google.com by `psii...@gmail.com` o…
-
Verify remote IFRAMEs and HTML5 cross-domain resource sharing does not allow inclusion of arbitrary remote content.
HydraNorth notes:
Blacklight notes:
Testing notes:
-
Verify that credentials, and all other identity information handled by the application(s), do not traverse unencrypted or weakly encrypted links.
HydraNorth notes:
Blacklight notes:
Testing notes:
-
Verify all pages and resources require authentication except those specifically intended to be public (Principle of complete mediation).
HydraNorth notes:
Blacklight notes:
Testing notes:
-
Please post your questions as comments to this issue. For questions you like, you can 'upvote' them by clicking the 'thumbs up' icon. This call for questions will begin on August 15, 2024 and end on A…
-
As a user I want to choose what kind pentest I want to do.
Currently we only support the OWASP Web Application Testing Guide.
We want to support the OWASP Mobile Application Testing Guide as well.…