Skip to content

DevOps Learning and Research

3.0 - The OWASP Top 10: Detailed

NathStevo97/devops-learnings

3.0 - The OWASP Top 10: Detailed¶

3.1 - Broken Access Control¶

3.1.1 - Introduction¶

3.1.2 - Example 1: 2021 Facebook Broken Access Control Vulnerability¶

3.1.3 - Example 2: 2021 Personal Data Travel Breach¶

3.1.4 - Prevention Techniques: Principle of Least Privilege¶

3.1.5 - Prevention Techniques: Record Ownership and Logging¶

3.1.6 - Prevention Techniques: Functional Access Control Testing¶

3.2 - Cryptographic Failure¶

¶

3.3 - Injection¶

3.4 - Insecure Design¶

3.5 - Security Misconfigurations¶

3.6 - Vulnerable and Outdated Components¶

3.7 - Security Logging and Monitoring Failures¶

3.8 - Server-Side Request Forgery¶