Tuesday, October 31 • 2:35pm - 3:10pm
OWASP Top 25 Parameters

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Feedback form is now closed.
For basic researches, top 25 vulnerable parameters based on frequency of use with reference to various articles, bug bounty reports and write-ups. These parameters can be used for automation tools or manual recon.

Although the prevalence percentages of these parameters cannot be proven precisely, they were prepared by a community which I founded, and myself.

OWASP Project Page: https://owasp.org/www-project-top-25-parameters/
GitHub Repo: https://github.com/lutfumertceylan/top25-parameter

The OWASP Top 25 Parameters project aims to research the frequency of parameters of today's most popular web-based vulnerability types that are at the highest risk of harboring vulnerabilities.

The patterns datas in this project, where these top 25 parameters are listed, were determined by half-manual, half-automation analysis. While listing these parameters, hundreds of important cyber security articles, write-ups, blog posts and vulnerability reports written since about 2007 were examined and a priority was defined according to these false positive rates and they were included in the list.

avatar for Lütfü Mert Ceylan

Lütfü Mert Ceylan

Security Researcher
Lütfü Mert Ceylan is a 19-years-old Security Researcher, especially specializes in the Web Application area of Cybersecurity. He is an OWASP Project Leader and owner of the OWASP Top 25 Parameters project. He is an OWASP Project Leader and also the OWASP Poland Chapter Board Member... Read More →

Tuesday October 31, 2023 2:35pm - 3:10pm EDT
Room: Mint