Many application programming groups never heard of OWASP which is a shame since many of today’s application vulnerabilities could be prevented. The best part is that the information is free and plentiful.
The Open Web Application Security Project is an online community which creates freely-available articles, methodologies, documentation, tools, and technologies in the field of web application security. Founded in 2001, the original authors thought they wouldn’t be around in 2016 since they believed application vulnerabilities would be gone by then.
Unfortunately, through the use vulnerabilities like SQL Injections, data including Personal Identifiable Information and health information has been breached many times in 2016.
I’ve included three resources below which should be studied and put into practice by anyone who codes for a living.
OWASP Top 10 Proactive Controls 2016
IBM OWASP top 10 vulnerabilities (with videos)