secDevLabs
secDevLabs copied to clipboard
globocom
A laboratory for learning secure web and mobile development in a practical manner.
## Motivation SecDevLab's goal is to provide examples of how security vulnerabilities could be fixed, but we still don't have any examples of `Insecure Communication` from [OWASP's 2016 Mobile Top...
## Motivation SecDevLab's goal is to provide examples of how security vulnerabilities could be fixed, but we only have one example of `Cross-Site Scripting` from [OWASP's 2017 Top 10](https://owasp.org/www-project-top-ten/OWASP_Top_Ten_2017/Top_10-2017_A7-Cross-Site_Scripting_(XSS)). ##...
## Motivation SecDevLab's goal is to provide examples of how security vulnerabilities could be fixed, but we don't currently have any examples using the [Rust](https://www.rust-lang.org/) language. ## It would be...
## Motivation SecDevLab's goal is to provide examples of how security vulnerabilities could be fixed, but we don't currently have any examples using the [Hack](https://hacklang.org/) language. ## It would be...
## This solution refers to which of the apps? A3 - Injection - SSType ## What did you do to mitigate the vulnerability? To resolve the vulnerability it is necessary...
## This solution refers to which of the apps? A3 - [Gossip World](https://github.com/globocom/secDevLabs/tree/master/owasp-top10-2021-apps/a3/gossip-world) ## What did you do to mitigate the vulnerability? I removed the | safe that allow the...
Use gitpod to an option to setup. Needs to change all `Setup.md` from exercises and explain the usage from Gitpod. Needs to change all Makefiles and verify if users is...
## This solution refers to which of the apps? A/M# - owasp-top10-2021-apps/a1/tictactoe ## What did you do to mitigate the vulnerability? The app had security flaws which allowed an attacker...
## This solution refers to which of the apps? Gossip World ## What did you do to mitigate the vulnerability? The `safe` filter is used to indicate that a variable...
## This solution refers to which of the apps? A6 - Cimentech ## What did you do to mitigate the vulnerability? I upgraded the Drupal version to 7.98 in order...
