Contents

Security overview OWASP top ten security vulnerabilities 2017 Security awareness and education The risk associated with build your own Other aspects of security Disclaimer Top ten security risks for 2017 Overview of the OWASP top ten list #1 - Injection Valid content types SQL injection XML injection #2 - Broken authentication #3 - Sensitive data exposure #4 - XML External Entities (XXE) #5 - Broken access control #6 - Security misconfiguration #7 - Cross site scripting (XSS) #8 - Insecure deserialization #9 - Using components with known vulnerabilities #10 - Insufficient logging and monitoring