[Owasp-leaders] CSRF Guidance at OWASP

Jim Manico jim.manico at owasp.org
Sun May 22 18:00:54 UTC 2016


Folks,

One of the older cheatsheets is the CSRF Cheatsheet (1.2+mil hits). Dave
Wichers recently took a stab at a fairly major revision to account for
modern defense strategies. Can you take a look and provide feedback if
you have expertise in this area? This is a difficult topic to discuss
concisely, IMO.

https://www.owasp.org/index.php/Cross-Site_Request_Forgery_(CSRF)_Prevention_Cheat_Sheet

Thanks + Aloha, Jim



More information about the OWASP-Leaders mailing list