GitHub

Logger.LogLevel in ESAPI.properties not working if set to ERROR/FATAL

We have a requirement to hide few input data in logs. ESAPI prints log saying " [WARNING ] Multiple (2x) encoding detected in " as input data had multiencoded characters. But we don't want this input ...
GitHub

OWASP Enterprise Security API for ColdFusion/CFML (ESAPI4CF)

This project is part of the Open Web Application Security Project (OWASP) Enterprise Security API (ESAPI) project. For details, please see http://www.owasp.org/index ...
Security Boulevard

Using the OWASP PHP ESAPI – Part 3

And here we are at the 3rd part of the OWASP ESAPI PHP tutorial series. If you haven’t read the first two yet, you can find Part One here and Part Two here. This week we’re going to cover encoding our ...
Security Boulevard

Using the OWASP PHP ESAPI – Part 2

After thinking about this for a week, I’ve decided to break this series out over a few more weeks. Rather than rush through things, I’m going to take my time and give a better overview. So, this week, ...