Web Application Security: Managing Cross-Site Scripting, the Number One Item on OWASP's Top Ten List
The Open Web Application Security Project (OWASP) is, by its own definition, "a worldwide free and open community focused on improving the security of application software. Its mission is to make application security 'Visible,' so that people and organizations can make informed decisions about application security risks." The global OWASP community includes corporations, educational institutions, and individuals. The project is not affiliated with any technology company, although it supports the informed use of security technology. Anyone may participate, and all materials are available under a free and open software license.