cheatsheetseries.owasp.org
Resources curated from this publisher and indexed across appsec.fyi topic pages. Last item added: 2026-04-17.
| Date Added | Resource | Excerpt |
|---|---|---|
| 2026-04-17 2026 | SAML Security (OWASP Cheat Sheet)AuthN | SAML Security (OWASP Cheat Sheet) |
| 2026-04-11 2026 | Authorization Testing Automation Cheat Sheet - OWASPAuthZ | Authorization Testing Automation Cheat Sheet - OWASP |
| 2026-04-11 2026 | Access Control Cheat Sheet - OWASPAuthZ | Access Control Cheat Sheet - OWASP |
| 2026-04-11 2026 | Authorization Cheat Sheet - OWASPAuthZ | Authorization Cheat Sheet - OWASP |
| 2026-04-11 2026 | OWASP Credential Stuffing Prevention Cheat SheetAuthN | OWASP Credential Stuffing Prevention Cheat Sheet |
| 2026-04-11 2026 | OWASP LLM Prompt Injection Prevention Cheat SheetAI | OWASP LLM Prompt Injection Prevention Cheat Sheet |
| 2026-04-10 2026 | OWASP Session Management Cheat SheetAuthN | OWASP Session Management Cheat Sheet |
| 2026-04-10 2026 | OWASP Authentication Cheat SheetAuthN | OWASP Authentication Cheat Sheet |
| 2026-04-10 2026 | OWASP JSON Web Token for Java Cheat SheetJWT | OWASP JSON Web Token for Java Cheat Sheet |
| 2026-04-10 2026 | IDOR Prevention Cheat SheetIDOR | IDOR Prevention Cheat Sheet |
| 2026-04-10 2026 | OWASP Deserialization Cheat SheetDeser | OWASP Deserialization Cheat Sheet |
| 2026-04-03 2026 | Cross-Site Request Forgery Prevention Cheat Sheet | OWASPCSRF | Cross-Site Request Forgery Prevention Cheat Sheet | OWASP |
| 2026-04-03 2026 | GraphQL Cheat Sheet | OWASPGraphQL | GraphQL Cheat Sheet | OWASP |
| 2026-04-03 2026 | Secrets Management - OWASP Cheat Sheet SeriesSecrets | Website with the collection of all the cheat sheets of the project. |
| 2025-08-14 2025 | XML External Entity Prevention ยท OWASP Cheat Sheet SeriesXXE | The content is about preventing XML External Entity (XXE) attacks, which is part of the OWASP Cheat Sheet Series. XXE attacks exploit vulnerabilities in XML processors by injecting malicious content. Preventing XXE attacks is crucial to protect against data theft and server compromise. The OWASP Cheat Sheet Series provides guidelines and best practices to mitigate XXE vulnerabilities and secure XML processing. It emphasizes the importance of validating input, disabling external entity references, and using secure XML parsers to prevent XXE attacks. |
| 2025-08-14 2025 | Server_Side_Request_Forgery_Prevention_Cheat_Sheet_SSRF_Bible.pdfSSRF | The content is a document titled "Server_Side_Request_Forgery_Prevention_Cheat_Sheet_SSRF_Bible.pdf." It likely contains information and guidelines on preventing server-side request forgery (SSRF) attacks. SSRF is a vulnerability where an attacker can manipulate a server into making unintended requests on their behalf. The document may provide cheat sheets or best practices to help developers protect their systems from SSRF attacks. It could be a valuable resource for understanding and mitigating this security risk. |
| 2025-08-14 2025 | Server Side Request Forgery Prevention - OWASP Cheat Sheet SeriesSSRF | The content is about preventing Server Side Request Forgery (SSRF) and is part of the OWASP Cheat Sheet Series. SSRF is a vulnerability where an attacker can manipulate a server into making unintended requests, potentially accessing internal systems or sensitive data. The OWASP Cheat Sheet provides guidance on how to prevent SSRF attacks, which typically involve validating and sanitizing user input, restricting access to sensitive resources, and using whitelists to control allowed URLs. It is crucial for developers and security professionals to be aware of SSRF risks and implement preventive measures to secure their systems. |
| 2021-10-25 2021 | HTTP HeadersAPI Sec | HTTP Headers |