aa_sdelements's People
aa_sdelements's Issues
T49: Disable and remove debug capabilities and code/data, and prepare application for release
Visit us at http://www.sdelements.com/ to find out how you can easily add project-specific software security requirements to your existing development processes.
T29: Use anti-Cross-Site Request Forgery (CSRF) tokens
Visit us at http://www.sdelements.com/ to find out how you can easily add project-specific software security requirements to your existing development processes.
T189: Minimize the use of unmanaged (native) code
Visit us at http://www.sdelements.com/ to find out how you can easily add project-specific software security requirements to your existing development processes.
T72: Use safe arithmetic to avoid integer overflow
Visit us at http://www.sdelements.com/ to find out how you can easily add project-specific software security requirements to your existing development processes.
T151: Use cryptographically secure random numbers
Visit us at http://www.sdelements.com/ to find out how you can easily add project-specific software security requirements to your existing development processes.
T75: Use regular expressions that are not vulnerable to Denial of Service
Visit us at http://www.sdelements.com/ to find out how you can easily add project-specific software security requirements to your existing development processes.
T338: Control access to resources through user authentication and authorization
Visit us at http://www.sdelements.com/ to find out how you can easily add project-specific software security requirements to your existing development processes.
T279: Avoid dynamically loading any code without proper security considerations
Visit us at http://www.sdelements.com/ to find out how you can easily add project-specific software security requirements to your existing development processes.
T17: Do not only rely on client-side authorization
Visit us at http://www.sdelements.com/ to find out how you can easily add project-specific software security requirements to your existing development processes.
T70: Implement account lockout or authentication throttling for system accounts
Visit us at http://www.sdelements.com/ to find out how you can easily add project-specific software security requirements to your existing development processes.
T60: Use correct and approved cryptographic algorithms, parameters, and key lengths
Visit us at http://www.sdelements.com/ to find out how you can easily add project-specific software security requirements to your existing development processes.
T186: Use recommended settings and the latest patches for third party libraries and software
Visit us at http://www.sdelements.com/ to find out how you can easily add project-specific software security requirements to your existing development processes.
T374: Offload HTTP request handling to dedicated modules
Visit us at http://www.sdelements.com/ to find out how you can easily add project-specific software security requirements to your existing development processes.
T50: Use indirect object reference maps if accessing files
Visit us at http://www.sdelements.com/ to find out how you can easily add project-specific software security requirements to your existing development processes.
T146: Use encryption for network communications in mobile environments
Visit us at http://www.sdelements.com/ to find out how you can easily add project-specific software security requirements to your existing development processes.
T349: Protect audit information and logs against unauthorized access
Visit us at http://www.sdelements.com/ to find out how you can easily add project-specific software security requirements to your existing development processes.
T1144: Prevent Server-Side Template Injection (SSTI)
Visit us at http://www.sdelements.com/ to find out how you can easily add project-specific software security requirements to your existing development processes.
T2: Secure the password reset mechanism
Visit us at http://www.sdelements.com/ to find out how you can easily add project-specific software security requirements to your existing development processes.
T49: Disable and remove debug capabilities and code/data, and prepare application for release
Visit us at http://www.sdelements.com/ to find out how you can easily add project-specific software security requirements to your existing development processes.
T69: Strong password requirements for server-to-server system accounts
Visit us at http://www.sdelements.com/ to find out how you can easily add project-specific software security requirements to your existing development processes.
T378: Authorize every request for data objects
Visit us at http://www.sdelements.com/ to find out how you can easily add project-specific software security requirements to your existing development processes.
T76: Do not hard code passwords
Visit us at http://www.sdelements.com/ to find out how you can easily add project-specific software security requirements to your existing development processes.
T295: Avoid storing unencrypted confidential data without access control mechanisms
Visit us at http://www.sdelements.com/ to find out how you can easily add project-specific software security requirements to your existing development processes.
T349: Protect audit information and logs against unauthorized access
Visit us at http://www.sdelements.com/ to find out how you can easily add project-specific software security requirements to your existing development processes.
T2139: Prevent information exposure through APIs
Visit us at http://www.sdelements.com/ to find out how you can easily add project-specific software security requirements to your existing development processes.
T19: Restrict Application's Access to Database
Visit us at http://www.sdelements.com/ to find out how you can easily add project-specific software security requirements to your existing development processes.
T61: Disable default accounts or change all default passwords
Visit us at http://www.sdelements.com/ to find out how you can easily add project-specific software security requirements to your existing development processes.
T37: Avoid DOM-based Cross-Site Scripting (XSS)
Visit us at http://www.sdelements.com/ to find out how you can easily add project-specific software security requirements to your existing development processes.
T66: Prevent web pages from being loaded inside iFrame
Visit us at http://www.sdelements.com/ to find out how you can easily add project-specific software security requirements to your existing development processes.
T536: Restrict the size of incoming messages in services
Visit us at http://www.sdelements.com/ to find out how you can easily add project-specific software security requirements to your existing development processes.
T156: Validate certificate and its chain of trust properly
Visit us at http://www.sdelements.com/ to find out how you can easily add project-specific software security requirements to your existing development processes.
T1539: Clear browser data on user logout
Visit us at http://www.sdelements.com/ to find out how you can easily add project-specific software security requirements to your existing development processes.
T35: Fine-tune HTTP server settings
Visit us at http://www.sdelements.com/ to find out how you can easily add project-specific software security requirements to your existing development processes.
T1468: Encrypt sensitive data at rest in the browser
Visit us at http://www.sdelements.com/ to find out how you can easily add project-specific software security requirements to your existing development processes.
T42: Avoid relying on untrusted data for server-side selection
Visit us at http://www.sdelements.com/ to find out how you can easily add project-specific software security requirements to your existing development processes.
T007-MKKK
T19: Restrict Application's Access to Database
Visit us at http://www.sdelements.com/ to find out how you can easily add project-specific software security requirements to your existing development processes.
T59: Use standard libraries for cryptography
Visit us at http://www.sdelements.com/ to find out how you can easily add project-specific software security requirements to your existing development processes.
T1365: Mitigate Server Side Request Forgery
Visit us at http://www.sdelements.com/ to find out how you can easily add project-specific software security requirements to your existing development processes.
T338: Control access to resources through user authentication and authorization
Visit us at http://www.sdelements.com/ to find out how you can easily add project-specific software security requirements to your existing development processes.
T1362: Perform message throttling in Web APIs
Visit us at http://www.sdelements.com/ to find out how you can easily add project-specific software security requirements to your existing development processes.
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
๐ Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. ๐๐๐
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google โค๏ธ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.