Skip to content

Index Alphabetical

91 cheat sheets available.

Icons beside the cheat sheet name indicate in which language(s) code snippet(s) are provided.

A B C D E F G H I J K L M N O P Q R S T U V W X

A

AJAX Security Cheat Sheet Json

Authorization Cheat Sheet

Authentication Cheat Sheet

Abuse Case Cheat Sheet

Authorization Testing Automation Cheat Sheet Java Xml

Access Control Cheat Sheet

Attack Surface Analysis Cheat Sheet

B

Bean Validation Cheat Sheet Java Xml

C

Credential Stuffing Prevention Cheat Sheet

Cryptographic Storage Cheat Sheet

Choosing and Using Security Questions Cheat Sheet

C-Based Toolchain Hardening Cheat Sheet C Bash

Cross Site Scripting Prevention Cheat Sheet Html

Cross-Site Request Forgery Prevention Cheat Sheet Html

Clickjacking Defense Cheat Sheet Javascript Html

CI CD Security Cheat Sheet

Content Security Policy Cheat Sheet Javascript Html

D

Denial of Service Cheat Sheet

Django Security Cheat Sheet Html Python

Django REST Framework Cheat Sheet Python

DOM based XSS Prevention Cheat Sheet Javascript Html

DotNet Security Cheat Sheet Javascript Csharp Html Xml

DOM Clobbering Prevention Cheat Sheet Javascript Html

Database Security Cheat Sheet

Deserialization Cheat Sheet Java Csharp Python

Docker Security Cheat Sheet Bash

E

Error Handling Cheat Sheet Java Csharp Xml

F

File Upload Cheat Sheet

Forgot Password Cheat Sheet

G

GraphQL Cheat Sheet Javascript Java

H

HTML5 Security Cheat Sheet Javascript Java Html Json Shell

HTTP Headers Cheat Sheet Javascript Xml Php

HTTP Strict Transport Security Cheat Sheet

I

Injection Prevention Cheat Sheet Java

Infrastructure as Code Security Cheat Sheet

Input Validation Cheat Sheet Java

Injection Prevention in Java Cheat Sheet

Insecure Direct Object Reference Prevention Cheat Sheet

J

JAAS Cheat Sheet Java

JSON Web Token for Java Cheat Sheet Javascript Java Json Sql

Java Security Cheat Sheet Java Xml

K

Kubernetes Security Cheat Sheet Json Bash

Key Management Cheat Sheet

L

LDAP Injection Prevention Cheat Sheet Java

Logging Vocabulary Cheat Sheet

Laravel Cheat Sheet Html Php Sql Bash

Logging Cheat Sheet

M

Mass Assignment Cheat Sheet Javascript Java Html Php

Microservices based Security Arch Doc Cheat Sheet

Microservices Security Cheat Sheet

Mobile Application Security Cheat Sheet

Multifactor Authentication Cheat Sheet

N

NPM Security Cheat Sheet

Network Segmentation Cheat Sheet

Nodejs Security Cheat Sheet Javascript Bash

NodeJS Docker Cheat Sheet

O

OS Command Injection Defense Cheat Sheet Java Php Shell

OAuth2 Cheat Sheet

P

Password Storage Cheat Sheet

Pinning Cheat Sheet

PHP Configuration Cheat Sheet

Prototype Pollution Prevention Cheat Sheet Javascript

Q

Query Parameterization Cheat Sheet Java Csharp Ruby Php Sql Coldfusion Perl

R

Ruby on Rails Cheat Sheet Html Ruby Bash

REST Assessment Cheat Sheet

REST Security Cheat Sheet

S

Secure Product Design Cheat Sheet

Session Management Cheat Sheet

SAML Security Cheat Sheet

Secrets Management Cheat Sheet

Symfony Cheat Sheet Php Bash

Server Side Request Forgery Prevention Cheat Sheet Java Python Ruby Bash

Securing Cascading Style Sheets Cheat Sheet

Secure Cloud Architecture Cheat Sheet

SQL Injection Prevention Cheat Sheet Java Csharp Vbnet

T

Transport Layer Security Cheat Sheet Bash

Transport Layer Protection Cheat Sheet

Third Party Javascript Management Cheat Sheet Javascript Html

Transaction Authorization Cheat Sheet

TLS Cipher String Cheat Sheet

Threat Modeling Cheat Sheet

U

User Privacy Protection Cheat Sheet

Unvalidated Redirects and Forwards Cheat Sheet Java Csharp Ruby Php

V

Virtual Patching Cheat Sheet Html

Vulnerability Disclosure Cheat Sheet

Vulnerable Dependency Management Cheat Sheet Java

W

Web Service Security Cheat Sheet

X

XS Leaks Cheat Sheet Javascript Html

XML External Entity Prevention Cheat Sheet Java Csharp Cpp Php

XML Security Cheat Sheet Java Xml Bash

XSS Filter Evasion Cheat Sheet Html Php