Skip to content
  • Categories
  • Recent
  • Tags
  • Popular
  • World
  • Users
  • Groups
Skins
  • Light
  • Brite
  • Cerulean
  • Cosmo
  • Flatly
  • Journal
  • Litera
  • Lumen
  • Lux
  • Materia
  • Minty
  • Morph
  • Pulse
  • Sandstone
  • Simplex
  • Sketchy
  • Spacelab
  • United
  • Yeti
  • Zephyr
  • Dark
  • Cyborg
  • Darkly
  • Quartz
  • Slate
  • Solar
  • Superhero
  • Vapor
  • Default (Cyborg)
  • No Skin
Collapse
Brand Logo

CIRCLE WITH A DOT
  1. Home
  2. Uncategorized
  3. πŸ“š Frameworks

πŸ“š Frameworks

Scheduled Pinned Locked Moved Uncategorized
cheatsheetsapplicationsecusecurityguidelibookmark
1 Posts 1 Posters 0 Views
  • Oldest to Newest
  • Newest to Oldest
  • Most Votes
Reply
  • Reply as topic
Log in to reply
This topic has been deleted. Only users with topic management privileges can see it.
  • hasamba@infosec.exchangeH This user is from outside of this forum
    hasamba@infosec.exchangeH This user is from outside of this forum
    hasamba@infosec.exchange
    wrote last edited by
    #1

    ----------------

    πŸ“š Frameworks
    ===================

    Executive summary: The OWASP Cheat Sheet Series is the official OWASP repository of concise, topic-focused application security guidance. The project aggregates actionable cheat sheets aimed at developers, reviewers, and integration teams, and includes documentation for contributors and content standards.

    Technical details:
    β€’ The repository centralizes individual cheat sheets covering secure coding, authentication, session management, cryptography, input validation, and other application-security domains.
    β€’ Documentation files of note include CONTRIBUTING.md and GUIDELINE.md which define contribution workflow and the structure/quality expectations for new cheat sheets.
    β€’ The project provides an automated build process and a distributable offline archive (bundle.zip) for teams that want an offline copy of the site.
    β€’ Communication and community coordination occur via the OWASP Slack workspace and the #cheatsheets channel mentioned by the project.

    Implementation and architecture (conceptual):
    β€’ Content is authored in Markdown as the canonical source format and rendered into a static site for web consumption. The repository maintains linting and terminology checks to preserve consistency across entries.
    β€’ The build pipeline includes markdown/terminology linters and a bundling step to produce an offline package intended for internal distribution or air-gapped environments.

    Use cases:
    β€’ Developers seeking compact, prescriptive guidance for specific secure-coding problems.
    β€’ Security reviewers and architects needing checklist-style references during code reviews and design reviews.
    β€’ Teams and educators requiring an offline, distributable set of best practices for training or policy alignment.

    Limitations and considerations:
    β€’ The repository is community-maintained; coverage varies by topic and relies on volunteer contributions for updates and new content.
    β€’ The guidance is reference-oriented and not a replacement for in-depth standards or formal compliance controls; context-specific adaptation is required when applying guidance to complex systems.

    References and governance:
    β€’ The project lists project leaders and core team members, and invites contributions via issue tracking and pull requests. The repository also documents linting rules and terminology standards to maintain consistency.

    πŸ”Ή OWASP #cheatsheets #application_security #security_guidelines #bookmark

    πŸ”— Source: https://github.com/OWASP/CheatSheetSeries/tree/master/cheatsheets

    1 Reply Last reply
    1
    0
    • R relay@relay.infosec.exchange shared this topic
    Reply
    • Reply as topic
    Log in to reply
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes

    • Login
    • Login or register to search.
    • First post
      Last post
    0
    • Categories
    • Recent
    • Tags
    • Popular
    • World
    • Users
    • Groups