Web Application Security – A Developers Checklist
In my work as a consultant I've been surprised by how many developers do not seem to have an understanding of common security practices. These Devs are getting paid to churn out new features as fast as possible, and they have spent a lot of time mastering complex modern web frameworks and libraries to do just that. Security during development seems to have become an afterthought that will be taken care of by specialists if the need arises. But security is a continuous process and not something one can just get over with from time to time. This book intends to provide a checklist that can be integrated into the implementation process of a web application from development to production. Together with detailed optional explanations of each item, it aims to be efficiently integrable into existing workflows.