SECBENCH
SECBENCH
#security
#patches
#vulnerabilities
#benchmark
Patterns - Top 2017 OSWAP
A1 - Injection (injec)
A2 - Broken Authentication and Session Management (auth)
A3 - Cross-Site Scripting (xss)
A4 - Broken Access Control
A5 - Security Misconfiguration (smis)
A6 - Sensitive Data Exposure (sde)
A7 - Insufficient Attack Protection (iap)
A8 - Cross-Site Request Forgery (csrf)
A9 - Using Components with Known Vulnerabilities (ucwkv)
A10 - Underprotected APIs (upapi)
Patterns - Others
- Path/Directory Traversal (pathtrav)
- Distributed Denial-of-Service/Denial-of-Service (dos)
- Memory Leaks (ml)
- Context Leaks (cl)
- Resource Leaks (rl)
- Overflow (over)
- Miscellaneous (misc)
