Part 6 Security as a process

No matter how well-versed you are in terms of web application security, if you don’t have a process, you cannot use your knowledge to its full potential. This part of the book looks at several security aspects that should be part of your process and that should increase the security of your web application even more.

Chapter 14 talks about dependencies and how to track them and keep them up to date (despite that being an uphill battle). In chapter 15, we briefly discuss several tools for auditing web applications, aiding you in finding potential security risks in your application. Finally, chapter 16 presents the 2021 edition of the popular Top 10 list of the Open Web Application Security Project (OWASP) and how it applies to the contents of this book.