Learn Ethical Hacking - No More a Secret

The OWASP Top Ten provides a powerful awareness document for web application security. The OWASP Top Ten represents a broad consensus about what the most critical web application security flaws are. Project members include a variety of security experts from around the world who have shared their expertise to produce this list. Versions of the 2007 and 2010 Top 10 were translated into English, French, Spanish, Japanese, Korean and Turkish and other languages. Translations for the 2010 version are posted here.

The Release Candidate for the OWASP Top 10 for 2013 is now available here: OWASP Top 10 - 2013 Release Candidate

The OWASP Top 10 - 2013 Release Candidate includes the following changes as compared to the 2010 edition:

Please review this release candidate and provide comments to dave.wichers@owasp.org or to the OWASP Top 10 mailing list (which you must be subscribed to). The comment period is open from Feb 16 through March 30, 2013 and a final version will be released in May 2013.

We urge all companies to adopt this awareness document within their organization and start the process of ensuring that their web applications do not contain these flaws. Adopting the OWASP Top Ten is perhaps the most effective first step towards changing the software development culture within your organization into one that produces secure code.