owasp

Sort by:Popular▼

✓Popular✓Newest

The OWASP Encoders package is a collection of high-performance low-overhead contextual encoders, that when utilized correctly, is an effective tool in preventing Web Application security vulnerabilities such as Cross-Site ...

Takes third-party HTML and produces HTML that is safe to embed in your web application. Fast and easy to configure.

The Enterprise Security API (ESAPI) project is an OWASP project to create simple strong security controls for every web platform. Security controls are not simple to build.

A library for performing fast, configurable cleansing of HTML coming from untrusted sources.

dependency-check-core is the engine and reporting tool used to identify and report if there are any known, publicly disclosed vulnerabilities in the scanned project's dependencies. The engine extracts meta-data from the dependencies and uses this to ...

The OWASP Encoder JSP package contains JSP tag definitions and TLDs to allow easy use of the OWASP Encoder Project's core API. The TLDs contain both tag definitions and JSP EL functions.

OWASP dependency-check gradle plugin is a software composition analysis tool used to find known vulnerable dependencies.

dependency-check-utils is a collection of common utility classes used within dependency-check that might be useful in other projects.

OWASP CSRFGuard is a library that implements a variant of the synchronizer token pattern to mitigate the risk of Cross-Site Request Forgery (CSRF) attacks.

The OWASP Encoders ESAPI Thunk provides an easy way to plugin the Encoder Projects API into an implementation of ESAPI.