The OWASP Top 10 is a regularly updated ranking of the most critical web application security risks, published by the Open Web Application Security Project. The current list includes: Broken Access Control, Cryptographic Failures, Injection, Insecure Design, Security Misconfiguration, Vulnerable Components, Authentication Failures, Data Integrity Failures, Logging Failures, and Server-Side Request Forgery (SSRF).
The OWASP Top 10 is the de facto standard for web application security. Compliance frameworks reference it, auditors check for it, and covering these risks addresses the vulnerabilities responsible for the vast majority of web application breaches.
Redsight tests for all OWASP Top 10 categories as part of every scan. Findings are tagged with their OWASP category for easy reporting and compliance mapping.
Get started in minutes. No contracts, no commitments.
Start Scanning →