Open Web Application Security Project (OWASP)

What is OWASP

The Open Web Application Security Project (OWASP) is a worldwide nonprofit organization that focuses on improving software security. The main mission of OWASP is to ensure that software security is visible, and to provide insights and tools to help improve application security globally. through the top 10 lists for various categories, so that organizations can use the Top 10 lists to make informed decisions.

Every three years, OWASP publishes updated top-ten lists of security flaws, derived from industry data and independent research. These lists contain the most commonly seen, and most commonly exploited, security flaws. The most commonly used OWASP Top 10 list is the one for Web Application Security. Developers and organizations developing or deploying web applications refer to this list to ensure that the biggest vulnerability categories are mitigated during development or deployment.

It is important to understand that the OWASP Top 10 is not an exhaustive list of all current vulnerabilities. It is only the most common vulnerabilities that are discovered. Care should be exercised while using the OWASP list to plan development or deployment testing.

The Barracuda Web Application Firewall uses powerful, cloud-based scanning technologies to inspect your online applications, whether they are already in production or still in development. It identifies and automatically remediates any unpatched vulnerabilities, including those listed on the OWASP Top 10 list, but also many others. This ensures that your online apps are secure against being used as threat vectors into your network. And by automating a critical part of every application-development process, it accelerates the overall DevOps cycle, letting you deploy secure applications without waiting for the traditional manual process of security auditing, which can be both time-consuming and unreliable.