[OWASP-Bangalore] Java Secure Coding - API's otherthan ESAPI (cyber research)

karthik bs karthikbs23 at gmail.com
Wed Jul 4 12:32:26 UTC 2018


Hi,

You can use the combination of StringEscapeUtils from Apache commons API
and regex based whitelists for xss prevention.

Cheers,
Karthik

On Wed, Jul 4, 2018, 5:29 PM <owasp-bangalore-request at lists.owasp.org>
wrote:

> Send OWASP-Bangalore mailing list submissions to
>         owasp-bangalore at lists.owasp.org
>
> To subscribe or unsubscribe via the World Wide Web, visit
>         https://lists.owasp.org/mailman/listinfo/owasp-bangalore
> or, via email, send a message with subject or body 'help' to
>         owasp-bangalore-request at lists.owasp.org
>
> You can reach the person managing the list at
>         owasp-bangalore-owner at lists.owasp.org
>
> When replying, please edit your Subject line so it is more specific
> than "Re: Contents of OWASP-Bangalore digest..."
>
>
> Today's Topics:
>
>    1. Java Secure Coding - API's otherthan ESAPI (cyber research)
>
>
> ----------------------------------------------------------------------
>
> Message: 1
> Date: Wed, 4 Jul 2018 16:09:17 +0530
> From: cyber research <001.appsec.007 at gmail.com>
> To: owasp-bangalore at lists.owasp.org
> Subject: [OWASP-Bangalore] Java Secure Coding - API's otherthan ESAPI
> Message-ID:
>         <CA+waq764YNt9ubC_0HdjUTq=YJ-iNCRPL1rpvWmD=
> 0Kme0Ut2g at mail.gmail.com>
> Content-Type: text/plain; charset="utf-8"
>
> Hello All,
>
> To perform Input Validation's / Sanitization/ Encoding in Java Applications
> i'm working with  ESAPI validators. If you know any other libraries/jars
> for securing Java based applications could you please let me know...
>
> Any suggestions welcome & appreciated.
>
> Best Regards,
> [email protected]!001
> -------------- next part --------------
> An HTML attachment was scrubbed...
> URL: <
> http://lists.owasp.org/pipermail/owasp-bangalore/attachments/20180704/9552617f/attachment-0001.html
> >
>
> ------------------------------
>
> _______________________________________________
> OWASP-Bangalore mailing list
> OWASP-Bangalore at lists.owasp.org
> https://lists.owasp.org/mailman/listinfo/owasp-bangalore
> Twitter : @owaspbangalore
>
>
> End of OWASP-Bangalore Digest, Vol 111, Issue 2
> ***********************************************
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.owasp.org/pipermail/owasp-bangalore/attachments/20180704/0575bcea/attachment.html>


More information about the OWASP-Bangalore mailing list