[Owasp-leaders] Abridged XSS Cheat Sheet
psiinon at gmail.com
Wed Nov 16 04:16:03 EST 2011
Looks great, and I think its exactly what OWASP should be producing.
It shouldnt claim to be 'all you need to know' about XSS, but it doesnt so
thats not a problem.
Its short, sweet, to the point, very useful and has links to more info.
So I strongly support this.
You could maybe stress that is just a summary / lookup table and that
people should look at the full XSS page for more info, but thats a very
On Wed, Nov 16, 2011 at 3:09 AM, Jim Manico <jim.manico at owasp.org> wrote:
> I've been working on a different "view" of XSS Defense mechanism which
> I've posted here
> My goal is to build a "traditional" short-form developer cheat sheet in
> the style of http://devcheatsheet.com
> This is an alternate view of
> I though this was a cool idea, but it's ruffling feathers and I've been
> asked specifically NOT to do this.
> Help please. :)
> Do you find this to be valuable?
> Do you think this undermines the work of the current XSS Prevention
> Cheat Sheet?
> Do you think one method is more/digestible than the other?
> Do you think both of these are of value?
> Any feedback is appreciated.
> Jim Manico
> Connections Committee Chair
> Cheatsheet Series Product Manager
> OWASP Podcast Producer/Host
> jim at owasp.org
> OWASP-Leaders mailing list
> OWASP-Leaders at lists.owasp.org
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the OWASP-Leaders