Simon Willison’s Weblog

OWASP Security guide

24th November 2002

The Open Web Application Security Project (OWASP) have a free guide to building secure web applications, which covers a large range of common problems such as cross site scripting and SQL injection vulnerabilities. The report is a 60 page PDF and although I haven’t had time to go through it yet it looks like an excellent read.

Posted 24th November 2002 at 9:19 pm · Follow me on Mastodon, Bluesky, Twitter or subscribe to my newsletter

More recent articles

Distributing Go binaries like sqlite-scanner through PyPI using go-to-wheel - 4th February 2026
Moltbook is the most interesting place on the internet right now - 30th January 2026
Adding dynamic features to an aggressively cached website - 28th January 2026

This is OWASP Security guide by Simon Willison, posted on 24th November 2002.

owasp 4 security 574 sql-injection 18

Next: Taxomita

Previous: phpPatterns

Monthly briefing

Sponsor me for $10/month and get a curated email digest of the month's most important LLM developments.

Pay me to send you less!

Sponsor & subscribe

Previously hosted at http://simon.incutio.com/archive/2002/11/24/owaspGuide