Explore the creation process and underlying principles of the OWASP Top 10 in this informative 26-minute video presentation. Delve into the core principles, data collection methods, and challenges faced in compiling this crucial cybersecurity resource. Learn about managing likelihood, the importance of comprehensive data, and the intricacies of CVSS scoring. Gain insights into the (not so) secret formula used to determine the most critical web application security risks. Understand how the OWASP Foundation navigates through the complexities of data analysis to produce this invaluable guide for developers, security professionals, and organizations worldwide.
OWASP Top 10 - The Making of the OWASP Top 10 and Beyond
Overview
Syllabus
Intro
Core Principles
Start with the Data
It can be a little messy
Managing Likelihood
Need More Data
CVSS Scoring
Data Porridge
(Not so) Secret Formula
Taught by
OWASP Foundation
Related Courses
-
What's New in the OWASP Top 10 for 2013
-
OWASP Top 10: Injection Attacks
-
OWASP Top 10 - A08:2021 - Software and Data Integrity Failures
-
OWASP Top 10 - A09:2021 - Security Logging and Monitoring Failures
-
OWASP Top 10 - A07:2021 - Identification and Authentication Failures
-
OWASP Top 10 Vulnerabilities Course (How To)
