Skip to content

Index Alphabetical

120 cheat sheets available.

Icons beside the cheat sheet name indicate in which language(s) code snippet(s) are provided.

A B C D E F G H I J K L M N O P Q R S T U V W X Z

A

Authorization Cheat Sheet

Attack Surface Analysis Cheat Sheet

Access Control Cheat Sheet

AI Agent Security Cheat Sheet Python

Authentication Cheat Sheet

Automotive Security Cheat Sheet

Authorization Regression Testing Cheat Sheet

AJAX Security Cheat Sheet Javascript Json

Authorization Testing Automation Cheat Sheet Java Xml

AML Sanctions AI Agent Payments Cheat Sheet

Abuse Case Cheat Sheet

B

Bot Management and Anti-Automation Cheat Sheet Javascript Html Python

Browser Extension Vulnerabilities Cheat Sheet Javascript Json

Bean Validation Cheat Sheet Java Xml

Business Logic Security Cheat Sheet

C

Clickjacking Defense Cheat Sheet Javascript Html

Cookie Theft Mitigation Cheat Sheet

CI CD Security Cheat Sheet

Choosing and Using Security Questions Cheat Sheet

Credential Stuffing Prevention Cheat Sheet

Cross-Site Request Forgery Prevention Cheat Sheet Javascript Html

C-Based Toolchain Hardening Cheat Sheet C Bash

Content Security Policy Cheat Sheet Javascript Html

Cryptographic Storage Cheat Sheet

Cross Site Scripting Prevention Cheat Sheet Html

D

DOM based XSS Prevention Cheat Sheet Javascript Html

DotNet Security Cheat Sheet Javascript Csharp Html Xml

Deserialization Cheat Sheet Java Csharp Python

Database Security Cheat Sheet

Drone Security Cheat Sheet

Dependency Graph SBOM Cheat Sheet Bash

Docker Security Cheat Sheet Bash

DOM Clobbering Prevention Cheat Sheet Javascript Html

Denial of Service Cheat Sheet

Django Security Cheat Sheet Html Python

Django REST Framework Cheat Sheet Python

E

Email Validation and Verification Cheat Sheet

Error Handling Cheat Sheet Java Csharp Xml

F

Forgot Password Cheat Sheet

File Upload Cheat Sheet

G

GitHub Actions Security Cheat Sheet

GraphQL Cheat Sheet Javascript Java

gRPC Security Cheat Sheet Bash

H

HTTP Strict Transport Security Cheat Sheet

HTTP Headers Cheat Sheet Javascript Xml Php

HTML5 Security Cheat Sheet Javascript Html

I

Injection Prevention in Java Cheat Sheet

Injection Prevention Cheat Sheet Java

Input Validation Cheat Sheet Java

Insecure Direct Object Reference Prevention Cheat Sheet

Infrastructure as Code Security Cheat Sheet

J

JSON Web Token Cheat Sheet Javascript Java Python Json Sql

Java Security Cheat Sheet Java Xml

JAAS Cheat Sheet Java

K

Kubernetes Security Cheat Sheet Json Bash

Key Management Cheat Sheet

L

Laravel Cheat Sheet Html Php Sql Bash

Legacy Application Management Cheat Sheet

LDAP Injection Prevention Cheat Sheet Java

LLM Prompt Injection Prevention Cheat Sheet Python

Logging Cheat Sheet

Logging Vocabulary Cheat Sheet Json

M

Mobile Application Security Cheat Sheet

Microservices Security Cheat Sheet

Multi Tenant Security Cheat Sheet Python Sql

MCP Security Cheat Sheet

Microservices based Security Arch Doc Cheat Sheet

Mass Assignment Cheat Sheet Javascript Java Html Php

Multifactor Authentication Cheat Sheet

N

Network Segmentation Cheat Sheet

NodeJS Docker Cheat Sheet

NoSQL Security Cheat Sheet Python

NPM Security Cheat Sheet Javascript Json Bash

Nodejs Security Cheat Sheet Javascript Bash

O

OAuth2 Cheat Sheet

OS Command Injection Defense Cheat Sheet Java Php Shell

P

Prototype Pollution Prevention Cheat Sheet Javascript

Pinning Cheat Sheet

PHP Configuration Cheat Sheet

Password Storage Cheat Sheet

Q

Query Parameterization Cheat Sheet Java Csharp Ruby Php Sql Coldfusion Perl

R

REST Assessment Cheat Sheet

REST Security Cheat Sheet

Ruby on Rails Cheat Sheet Html Ruby Bash

RAG Security Cheat Sheet

S

Symfony Cheat Sheet Php Bash

Secure Code Review Cheat Sheet Bash

Software Supply Chain Security Cheat Sheet

Secure Product Design Cheat Sheet

Secure Cloud Architecture Cheat Sheet

Security Terminology Cheat Sheet

Secure AI Model Ops Cheat Sheet

SAML Security Cheat Sheet

Session Management Cheat Sheet

Subdomain Takeover Prevention Cheat Sheet

Serverless FaaS Security Cheat Sheet Python Json Bash

Secrets Management Cheat Sheet Python

Server Side Request Forgery Prevention Cheat Sheet Java Python Ruby Bash

SQL Injection Prevention Cheat Sheet Java Csharp Vbnet

Securing Cascading Style Sheets Cheat Sheet

Secure Coding with AI Cheat Sheet

T

Third Party Payment Gateway Integration Cheat Sheet

Third Party Javascript Management Cheat Sheet Javascript Html

Transaction Authorization Cheat Sheet

Threat Modeling Cheat Sheet

Transport Layer Protection Cheat Sheet

Transport Layer Security Cheat Sheet

TLS Cipher String Cheat Sheet

U

User Privacy Protection Cheat Sheet

Unvalidated Redirects and Forwards Cheat Sheet Java Csharp Ruby Php

V

Vulnerability Disclosure Cheat Sheet

Virtual Patching Cheat Sheet Html

Vulnerable Dependency Management Cheat Sheet Java

W

Web Service Security Cheat Sheet

WebSocket Security Cheat Sheet Javascript

X

XS Leaks Cheat Sheet Javascript Html

XML External Entity Prevention Cheat Sheet Java Csharp Cpp Php

XSS Filter Evasion Cheat Sheet Html Php

XML Security Cheat Sheet Java Xml Bash

Z

Zero Trust Architecture Cheat Sheet