The Open Web Application Security Project (OWASP) has published a new version of its infamous Top 10 vulnerability ranking, four years after its last update, in 2013.

Security misconfiguration is a significant concern, in the OWASP Top 10. During our web application penetration tests, we often discover numerous vulnerabilities of this nature. According to OWASP, ...

CRS aims to protect web applications from a wide range of attacks, including those described in OWASP Top Ten, with a minimum of false alerts.

The non-profit Open Web Application Security Project (OWASP) has released its latest list of top 10 web application security risks. Read the release statment. [OWASP.org] ...

OWASP's Broken Web Applications Project makes it easy to learn how to hack web applications--a critical skill for web application developers playing defense, junior penetration testers, and ...

The latest update to OWASP's annual list has some familiar faces, including injection flaws and cross-site scripting.

As a long-time OWASP member and application security practitioner, I wanted to share my thoughts on how the newly released OWASP Web App Top 10 might impact or influence the updates to the API ...

The new release of the OWASP Top 10 list is out from the Open Web Application Security Project, and while most of it remains the same there are a couple of new additions, focusing on protections ...

OWASP provides the most effective and innovative approaches to security because of its open, global community. The OWASP Top 10 list has become the industry standard in assessing web applications ...

Edgio, Inc., the platform of choice for speed, security and simplicity at the edge, today announced that it is now a Gold Sponsor of the Open Web Application Security Project ModSecurity Core Rule ...