Contributors to the initial version of the project
If you want to modify something regarding the mention made to you (typo/link to your profile/etc), feel free to submit a PR with the expected content. Same approach if you think that we have forgotten someone.
Sorting applied on the name is an alphabetical one.
- Michael Eddington
- Til Mas
- Dominique Righetto - dominique.righetto@owasp.org
- James Robinson - jrobinson@netskope.com
- Rick Mitchell
- Adinath Raveendra Raj - adinath@acciente.com
- Jim Manico - jim@owasp.org
- Mennouchi Islam Azeddine - azeddine.mennouchi@owasp.org
- Shruti Kulkarni - shruti.kulkarni@owasp.org
Attack Surface Analysis Cheat Sheet
- Jim Bird - jim.bird@owasp.org
- Jim Manico - jim@owasp.org
- Eoin Keary eoinkeary
- Jim Manico - jim@owasp.org
- Manuel Aude Morales
- Pawel Krawczyk
- Sven Neuhaus
- Timo Goosen
Authorization Testing Automation
- Dominique Righetto - dominique.righetto@owasp.org
- Anton Abashkin - abashkin.anton@gmail.com
- Jeffrey Walton - jeffrey@owasp.org
- Jim Manico - jim@owasp.org
- Kevin Wall - kevin@owasp.org
C-Based Toolchain Hardening Cheat Sheet
- Jeffrey Walton - jeffrey@owasp.org
- Jim Manico - jim@owasp.org
- Kevin Wall - kevin@owasp.org
Choosing and Using Security Questions Cheat Sheet
- Kevin Wall - kevin.w.wall@gmail com
Clickjacking Defense Cheat Sheet
- Aabashkin
- Dave Wichers - dwichers@gmail.com
- Eelgheez
- Jeffrey Walton
- Jim Manico - jim@owasp.org
- Michael Brook
- Santhosh Tuppad - santhosh.tuppad@gmail.com
- Shruti kulkarni
- Till Maas
- Tom Parker
- Yozo
Content Security Policy Cheat Sheet
- Elie Saad - eliesaad7@gmail.com
Credential Stuffing Prevention Cheat Sheet
- Brad Causey
Cross-Site Request Forgery Prevention Cheat Sheet
- Dave Wichers - dave.wichers@owasp.org
- Dominique Righetto - dominique.righetto@owasp.org
- Eric Sheridan - eric.sheridan@owasp.org
- Paul Petefish
- Manideep Konakandla (Amazon Application Security Team)
Cross Site Scripting Prevention Cheat Sheet
- Jeff Williams - jeff.williams@contrastsecurity.com
- Jim Manico - jim@owasp.org
- Neil Matatall - neil@owasp.org
Cryptographic Storage Cheat Sheet
- David Rook - david.a.rook@gmail.com
- Fred Donovan - fred.donovan@owasp.org
- Jim Manico - jim@owasp.org
- Kevin Kenan - kevin@k2dd.com
- Kevin Wall - kevin.w.wall@gmail.com
- Tony Hsu - hsiang_chih@yahoo.com
DOM based XSS Prevention Cheat Sheet
- Abraham Kang - abraham.kang@owasp.org
- Achim Hoffmann - achim@owasp.org
- Chris (Chris BEEF) Schmidt
- Dhiraj Mishra - mishra.dhiraj@owasp.org
- Eduardo (SirDarkCat) Alberto Vela Nava
- Erlend Oftedal
- Gareth (Gaz) Heyes
- Jeff Williams - jeff.williams@owasp.org
- Jeremy Long
- Jim Manico - jim@owasp.org
- John Steven
- Mario Heiderich
- Mike Samuel
- Robert (RSnake) Hansen
- Stefano Di Paola
- Liviu Rombauts
- Stephen Corbiaux - stephen.corbiaux@owasp.org
- Arshan Dabirsiaghi - arshan@contrastsecurity.org
- Tony Hsu (Hsiang-Chih) Shane Murnion
- Jakub Maćkowski - jakub.mackowski@owasp.org
- Bill Sempf - bill.sempf@owasp.org
- Jeremy Long - jeremy.long@owasp.org
- John Staveley
- Sam Ferree
- Shane Murnion
- Steve Bamelis
- Troy Hunt - troyhunt@hotmail.com
- Xander Sherry
- Dominique Righetto - dominique.righetto@owasp.org
- Dave Ferguson - gmdavef@gmail.com
- James McGovern - james.mcgovern@hp.com
- Jim Manico - jim@owasp.org
- Kevin Wall - kevin.w.wall@gmail.com
- Wesley Philip - wphilip@ca.ibm.com
- Dominique Righetto dominique.righetto@owasp.org
- Juan Galiana Lara jgaliana@owasp.org
- Krzysztof Kotowicz krzysztof@kotowicz.net
- Mark Roxberry mark.roxberry@owasp.org
- Shreeraj Shah shreeraj.shah@blueinfy.net
- Will Stranathan will@cltnc.us
HTTP Strict Transport Security Cheat Sheet
- Daniel Black
- Jim Manico
- Michael Coates
- Pawel Krawczyk
- Til Maas
Injection Prevention Cheat Sheet
- Alexander Meisel - alexander.meisel@owasp.org
- Erlend Oftedal - erlend.oftedal@owasp.org
- Jim Manico - jim@owasp.org
- Sherif Mansour - sherif.mansour@owasp.org
Injection Prevention Cheat Sheet in Java
- Dave Wichers - dave.wichers@owasp.org
- Dominique Righetto - dominique.righetto@owasp.org
- Dave Wichers - dave.wichers@aspectsecurity.com
Insecure Direct Object Reference Prevention Cheat Sheet
- Dominique Righetto - dominique.righetto@owasp.org
- Eric Sheridan - eric.sheridan@owasp.org
- Jeff Williams - jeff.williams@contrastsecurity.com
- Dr. A.L. Gottlieb - AnthonyG@owasp.org
JSON Web Token Cheat Sheet for Java
- Dominique Righetto - dominique.righetto@owasp.org
- Jim Manico - jim.manico@owasp.org
- Paul Ionescu - paul.ionescu@owasp.org
- Brian Russell - russellbri@leidos.com
- Drew Van Duren - drew.f.van.duren@leidos.com
- Susanna Bezold – BezoldCISSP@aol.com
- Vanessa Amador - vanessa.c.amador@leidos.com
LDAP Injection Prevention Cheat Sheet
- Ben Weintraub - Ben@bluetalon.com
- Jim Manico - jim@owasp.org
- Alexis Fitzgerald - alexis.fitzgerald@owasp.org
- Colin Watson - colin.watson@owasp.org
- Eoin Keary - eoin.keary@owasp.org
- Abashkin Anton - abashkin.anton@gmail.com
OS Command Injection Defense Cheat Sheet
- Jim Manico - jim.manico@owasp.org
- Katy Anton - katy.anton@owasp.org
- Abbas Naderi - abbas.naderi@owasp.org
- Achim Hoffmann - Achim@owasp.org
- Dan Ehrlich - dan.ehrlich@owasp.org
- Tony Hsu HsiangChih
- Dominique Righetto - dominique.righetto@owasp.org
- Jim Manico - jim@owasp.org
- John Steven - john.steven@owasp.org
- Jeffrey Walton - jeffrey@owasp.org
- Jim Manico - jim@owasp.org
- John Steven - john@owasp.org
- Kevin Wall - kevin@owasp.org
- Ricardo Iramar - ricardo.iramar@gmail.com
Protect FileUpload Against Malicious File
- Dominique Righetto - dominique.righetto@owasp.org
Query Parameterization Cheat Sheet
- Dave Wichers - dave.wichers@owasp.org
- Jim Manico - jim@owasp.org
- Neil Matatall - neil@owasp.org
- Ofer Shezaf - ofer@shezaf.com
- Andrew van der Stock - vanderaj@owasp.org
- Erlend Oftedal - erlend.oftedal@owasp.org
- Jan Wolff - jan.wolff@owasp.org
- Johan Peeters - yo@johanpeeters.com
- Manh Pham - manhpt2811@gmail.com
- Rocco Gränitz - rocco.graenitz@owasp.org
- Tony Hsu Hsiang Chih- Hsiang_chihi@yahoo.com
- Aaron Bedra - aaron@aaronbedra.com
- Egor Homakov - homakov@gmail.com
- Jim Manico - jim@owasp.org
- Jon Claudius - jonathan.claudius@gmail.com
- Jon Rose - jrose400@gmail.com
- Justin Collins - justin@presidentbeef.com
- Ken Johnson - cktricky@gmail.com
- Lance Vaughn - lance@cabforward.com
- Matt Konda - mkonda@jemurai.com
- Neil Matatall - neil@matatall.com
- Zaur Molotnikov - qutorial@gmail.com
- Gunnar Peterson
- James McGovern
- Brad Broulik
- Paweł Krawczyk
SQL Injection Prevention Cheat Sheet
- Dave Wichers - dave.wichers@owasp.org
- Dhiraj Mishra - mishra.dhiraj@owasp.org
- Jim Manico - jim@owasp.org
- Matt Seil - mseil@acm.org
Securing Cascading Style Sheets Cheat Sheet
Session Management Cheat Sheet
- Raul Siles (DinoSec) - raul@dinosec.com
- Achim Hoffmann - achim@owasp.org
- Torsten Gigler - torsten.gigler@owasp.org
Third Party Javascript Management Cheat Sheet
- Jim Weiler - Jim.Weiler@owasp.org
- Ahmed Kanoma
- Mohamed Alfateh
Transaction Authorization Cheat Sheet
- Adam Lange
- Adam Zachara, SecuRing
- Andrzej Kleśnicki, Qualys
- Francois-Eric Guyomarch, HID Global
- James Holland, HID Global
- Milan Khan, HID Global
- Steven Wierckx, Toreon
- Sven Thomassin, PwC BE - Technology Consulting
- Sławomir Jasek, SecuRing
- Wojciech Dworakowski - wojciech.dworakowski@securing.pl
Transport Layer Protection Cheat Sheet
- Dave Wichers - dave.wichers@owasp.org
- Michael Coates - michael.coates@owasp.org
- Tony Hsu - hsiang_chih@yahoo.com
- Torsten Gigler - torsten.gigler@owasp.org
- Tyler Reguly - treguly@sslfail.com
Unvalidated Redirects and Forwards Cheat Sheet
- Jim Manico - jim@owasp.org
- Johanna Curiel - johanna.curiel@owasp.org
- Susanna Bezold - susanna.bezold@owasp.org
User Privacy Protection Cheat Sheet
- Mohammed ALDOUB
- Christian Folini - christian.folini@netnea.com
- Josh Zlatin - jamuse@gmail.com
- Ryan Barnett - ryan.barnett@owasp.org
Vulnerability Disclosure Cheat Sheet
- OWASP Montréal chapter
- @el_d33
- gosecure.ca
Vulnerable Dependency Management Cheat Sheet
- Dominique Righetto - dominique.righetto@owasp.org
- Elie Saad - eliesaad7@gmail.com
- Jakub Maćkowski - jakub.mackowski@owasp.org
Web Service Security Cheat Sheet
- Dave Wichers - dave.wichers@owasp.org
- Jim Manico - jim@owasp.org
- Sherif Koussa - sherif.koussa@owasp.org
- Gunnar Peterson
XML External Entity Prevention Cheat Sheet
- Dave Wichers - dave.wichers@owasp.org
- Dean Fleming
- James Jardine - james@jardinesoftware.com
- Tony Hsu (Hsiang-Chih)
- Xiaoran Wang - xiaoran@attacker-domain.com
- Fernando Arnaboldi - fernando.arnaboldi@ioactive.com