OWASP

Additional Information

OWASP is a nonprofit organization that was formed on September 9, 2001 by Mark Curphey to help people make websites and devices more secure. OWASP provides different resources and tools about vulnerabilities and attacks to help inform developers and security people. Their website has many documents, forums and even machines you can download and hack yourself!


As technology grows its hard to keep up on security, so OWASP made the OWASP Top Ten. The OWASP Top 10 shows the top ten web application security risks of that year, but if they do not change, they keep the same list from the last year. To make the list they find out the different vulnerabilities by using a rating scheme that sorts by Exploitability, Weakness-Prevalence, Weakness - Detectability, and Technical-Impacts. The current list is OWASP 2017, it can be found here.


Over the next few months we will be releasing lessons and videos on how these different attacks work. We will also be showing you how to set up a home lab. All this can be found in the lessons section along with some basics every hacker should know.

image11