10 Vulnerabilities to watch for When building secure backend application (OWASP recommendations)

The Backend Engineering Show with Hussein Nasser

Apr 07, 2021•29 min

--:--

Listen in podcast apps:

Apple Podcasts

Spotify

Download

Listen to this episode in Metacast mobile app

Don't just listen to podcasts. Learn from them with transcripts, summaries, and chapters for every episode. Skim, search, and bookmark insights. Learn more

Episode description

The open web application security project is a recognized entity that helps developers identify critical security vulnerabilities to build secure web applications. In this video I will go through the 10 vulnerabilities and explain each one and give examples and anecdotes from real life examples.

0:00 Building Secure Backends

2:30 Injection

4:50 Broken Authentication

6:43 Sensitive Data Exposure

11:00 XML External Entities (XXE)

13:45 Broken Access Control

17:00 Security Misconfiguration

19:00 XSS

22:45 Insecure Deserialization.

24:48 Using Components with Known Vulnerabilities.

26:00 Insufficient Logging & Monitoring.

Resources