Top "Owasp" questions

The Open Web Application Security Project (OWASP) is an organization that wants to inform people about application security.

Sanitizing response JSON from Spring MVC Controller using JSON Sanitizer?

I want to intercept the JSON sent back from a Spring MVC Rest Controller and run it through a sanitizer …

Read More
java json spring-mvc owasp
How to generate full report in owasp zap in any format

When i try to generate report in HTML,.XML or PDF I'm getting only alerts in the report. I would …

Read More
owasp zap
ESAPI canonicalize malforming url

We have an application that accepts URLs from users. This data needs validation, and we're using ESAPI for this purpose. …

Read More
java validation owasp canonicalization esapi
Path Manipulation error fix for filename

I have a piece of code where-in I have to read a file for its possible contents. I'm encountering Path …

Read More
java owasp fortify fortify-source
Using OWASP ZAP behind a corporate proxy

Is there any way to use ZAP behind a corporate proxy? I.e. I want to configure my browser to …

Read More
configuration proxy owasp zap