dan at denimgroup.com
Thu Apr 2 06:13:49 EDT 2009
I think that if all we had in ESAPI was the encoding library, that
alone would be enough to stop the vast majority of real world problems.
The rest is gravy. =)
Honestly that has been the source of the quickest/easiest wins
when we have used it. ESAPI is a _great_ remediation tool. The Java
world was lacking a legitimate and centralized set of encoding functions
and ESAPI delivers. Bravo!
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the OWASP-ESAPI