The History of the OWASP Developer Guide

preview_player
Показать описание
Learn about the early history of OWASP's first project, the OWASP Developer Guide, and what's been happening more recently.

The OWASP Developer Guide Project home page, PDF and e-book:

Managed by the OWASP® Foundation
  1. OWASP Foundation
  2. owasp
  3. appsec
  4. developer guide
  5. application security
  6. history
Рекомендации по теме
The History of 0:15:38

The History of the OWASP Developer Guide

Keynote: Mark Curphey 0:50:40

Keynote: Mark Curphey - 20:20 The History and Future of OWASP

Explained: The OWASP 0:14:22

Explained: The OWASP Top 10 for Large Language Model Applications

OWASP Project History 0:03:02

OWASP Project History - Jim Manico

From the OWASP 0:40:33

From the OWASP Top Ten(s) to the OWASP ASVS • Philippe De Ryck • GOTO 2018

OWASP Top 10 0:08:51

OWASP Top 10 2021 - The List and How You Should Use It

The Past, Present, 0:50:39

The Past, Present, and Future of OWASP

Keynote Mark Curphey 0:50:40

Keynote Mark Curphey 2020 The History and Future of OWASP

Mark Curphey -- 0:39:49

Mark Curphey -- The future of OWASP

Evolution of AppSec: 0:40:01

Evolution of AppSec: Perspectives from a Decade of Building OWASP ZAP

Same-origin policy: The 1:04:43

Same-origin policy: The core of web security @ OWASP Wellington

Whiteboard Wednesday: An 0:03:33

Whiteboard Wednesday: An Intro to the OWASP Top 10

Introduction to OWASP 1:02:10

Introduction to OWASP by Gunnard Engebreth - 200OK 2020

The OWASP Top 0:00:41

The OWASP Top 10 | Threats To LLMs #owasp #owasptop10 #threats #vulnerabilities #cybersecurity

A Starters Guide 0:25:46

A Starters Guide to Pentesting with OWASP

OWASP Top 10: 0:40:06

OWASP Top 10: What cybersecurity professionals need to know | Guest John Wagnon

OWASP TOP 10 0:00:16

OWASP TOP 10 2021 🤯

: The OWASP 0:58:00

: The OWASP Top Ten Proactive Controls 2018 - Jim Manico

Getting Started with 0:01:38

Getting Started with OWASP Zed Attack Proxy (ZAP) for Web Application Penetration Testing Preview

Keynote: 15 years 0:50:29

Keynote: 15 years of OWASP Top 10 - Has the Cloud Made a Difference? - Shira Shamban

OWASP Top 10 0:01:51

OWASP Top 10 Overview

OWASP TOP 10 0:00:36

OWASP TOP 10 vulnerability every must know | GREAT CYBER |

Introduction to OWASP 1:20:21

Introduction to OWASP Top10:2021

OWASP Top10 2021 0:50:25

OWASP Top10 2021 Webinar

Комментарии
Автор

Just a quick note: the first authors of the Developer Guide were Mark Curphey, David Endler, William Hau, Steve Taylor, and Tim Smith. When I joined OWASP in November 2001, the first Developer Guide was one of the projects being talked about, but it wasn't released as 1.0 until June 2002.

Version 1.1, the XML version, was released in September 2002, with 1.1.1 following on September 11, 2002.

After that, the project became a bit dormant until I took the reins in 2003 and started on a basically complete rewrite.

I released v2.0 at Black Hat in late July 2005.

I'm moderately sure version 3.0 was never released despite several attempts. I wrote an outline of the ToC, but there were no contributors at the time, and I was burned out. So things went dormant for nearly twenty years when a new team formed in early 2023 and started writing.

Version 4.0 was a complete rewrite and released on May 6, 2024. The current version is 4.1.3.

vanderaj
Автор

at 1:28, we hear that "There was a real need to let folks know about all the different attacks.. " and it actually got used as: "This is how you hack web apps" How convenient for the cybersecurity industry that there were so many more hackers as a result.

As much as they would like to pretend it was unintended, I think it was intended.

ryanstephen