Bummer! This is just a preview. You need to be signed in with a Basic account to view the entire video.
What is OWASP?1:23 with Jared Smith
OWASP is a non-profit organization dedicated to web security around the world, and includes thousands of volunteers from the security community at large.
- OWASP: Open Web Application Security Project is a 501(c)(3) worldwide not-for-profit charitable organization focused on improving the security of software. Their mission is to make software security visible, so that individuals and organizations are able to make informed decisions.
Starting in 2001, the open web application security project, or OWASP for
short, is a non profit, community based organization
dedicated to enhancing web security across the entire world.
OWASP evolved from the desire of a few active security members
to combine the knowledge required to protect modern web apps.
Today, OWASP has grown to over 42,000 volunteers.
Former security directors of Mozilla, McAfee, and
Intel sit on the board of directors.
And with the help of thousands of volunteers,
OWASP publishes many documents, wiki articles, reports, and
software tools helping secure the modern web.
Major projects from OWASP include the OWASP Top 10,
which is what we will cover in this course.
The OWASP Software Assurance Maturity Model which is committed to helping
organizations formulate and implement a strategy for application security.
The OWASP Testing and Code Review guides, which outline proper web app testing
strategies, as well as proper code reviews.
And the Zed Attack Proxy, which is an open source, and
widely used web application scanner and vulnerability analysis tool.
In this course,
Keep in mind though, the fixes for
these vulnerabilities can be adapted to nearly any programming language.
In the next video, we'll dive into exactly what the OWASP Top 10 is.
You need to sign up for Treehouse in order to download course files.Sign up