Simon Willison’s Weblog

OWASP Security guide

24th November 2002

The Open Web Application Security Project (OWASP) have a free guide to building secure web applications, which covers a large range of common problems such as cross site scripting and SQL injection vulnerabilities. The report is a 60 page PDF and although I haven’t had time to go through it yet it looks like an excellent read.

Posted 24th November 2002 at 9:19 pm · Follow me on Mastodon, Bluesky, Twitter or subscribe to my newsletter

More recent articles

GPT-5: Key characteristics, pricing and model card - 7th August 2025
OpenAI's new open weight (Apache 2) models are really good - 5th August 2025
ChatGPT agent's user-agent - 4th August 2025

This is OWASP Security guide by Simon Willison, posted on 24th November 2002.

owasp 4 security 532 sql-injection 16

Next: Taxomita

Previous: phpPatterns

Monthly briefing

Sponsor me for $10/month and get a curated email digest of the month's most important LLM developments.

Pay me to send you less!

Sponsor & subscribe

Previously hosted at http://simon.incutio.com/archive/2002/11/24/owaspGuide