Programmer in Server Room

Best Practices

 

OWASP (Open Web Application Security Project)

The Open Web Application Security Project (OWASP) is an open community empowering organizations to develop, purchase, and maintain trusted applications.


The goal of the project is to raise awareness about application security by identifying the most critical risks organizations are facing. 

inyeccion.png

Code injection

XSS.png

Cross site scripting (XSS)

seguridad incorrecta.png

Incorrect security setting

accesos.png

Lack of function access control

vulnerabilidades.png

Use of components with known vulnerabilities

autenticacion.png

Loss of authentication and session management 

objetos.png

Direct reference unsecure to objects

exposicion.png

sensitive data exposure

CSRF.png

Cross site request forgery (CSRF)

noValidos.png

Unvalidated and redirects and forwards

 

Vulnerability testing

As a continuous improvement process, on a semiannual basis, IT Kapital performs a series of vulnerability tests carried out by third-party entities that guarantee the best practices used to develop software applications.