[Owasp-leaders] OWASP Top 10 2012

Mark Curphey mark at curphey.com
Fri Oct 7 10:53:08 EDT 2011


Troy hunt has already done a series on T10 and .net. He's a .net security MVP.  I am sure he'll donate. Shall I ask him?

Sent from my iPhone

On Oct 7, 2011, at 7:21 AM, Jim Manico <jim.manico at owasp.org> wrote:

> Yes, you are right on. It's a crucial way to influence developers more
> - and influencing developers is the real mission of OWASP from days of
> yore. Shall we get started? I'll lend a hand.
> 
> --
> Jim Manico
> (808) 652-3805
> 
> On Oct 7, 2011, at 9:18 AM, Erwin Geirnaert
> <erwin.geirnaert at zionsecurity.com> wrote:
> 
>> Hi list,
>> 
>> During some discussions this week with Java developers while giving a security training I got the following remark: "why are there so many ASP.NET/PHP issues in the OWASP Top 10, is Java more secure"?
>> 
>> So what I propose is to create a specific OWASP Top 10 for different technologies: Microsoft, Java, PHP and we can still have one global Top 10.
>> Ofcourse based on the CVE database but it will be more clear for the developers and I think that the OWASP Top 10 for Java will be very different than OWASP Top 10 for PHP.
>> 
>> Best regards,
>> 
>> Erwin
>> _______________________________________________
>> OWASP-Leaders mailing list
>> OWASP-Leaders at lists.owasp.org
>> https://lists.owasp.org/mailman/listinfo/owasp-leaders
> _______________________________________________
> OWASP-Leaders mailing list
> OWASP-Leaders at lists.owasp.org
> https://lists.owasp.org/mailman/listinfo/owasp-leaders


More information about the OWASP-Leaders mailing list