OWASP Encoder Comparison Reference Project

=Main=  {| style="padding: 0;margin:0;margin-top:10px;text-align:left;" |-
 * valign="top" style="border-right: 1px dotted gray;padding-right:25px;" |

OWASP Encoder Comparison Reference Project
Libraries and frameworks encode ASCII characters differently. The OWASP Enterprise Security API (ESAPI) is the reference implementation for the most comprehensive and secure output encoding/escaping. Using this encoder comparison table, you will see how ESAPI exceeds other framework encoders and native encoders.

The OWASP Encoder Comparison Reference Project is a web-based table reference for how ESAPI and other framework and native language encoding methods work against ASCII characters.

Project Leader
Stephanie Tan

Licensing
OWASP Encoder Comparison Reference is free to use. It is licensed under the http://creativecommons.org/licenses/by-sa/3.0/ Creative Commons Attribution-ShareAlike 3.0 license], so you can copy, distribute and transmit the work, and you can adapt it, and use it commercially, but all provided that you attribute the work and if you alter, transform, or build upon this work, you may distribute the resulting work only under the same or similar license to this one.


 * valign="top" style="padding-left:25px;width:50px;border-right: 1px dotted gray;padding-right:25px;" |



Quick Download

 * ESAPI vs Others Encoding Comparison Table: http://boldersecurity.github.io/encoder-comparison-reference/
 * Source Code on Github: https://github.com/boldersecurity/encoder-comparison-reference

News and Events

 * February 11, 2014: Version 1.0 of the OWASP Encoder Comparison Reference Released
 * February 4 2014: OWASP Project accepted!

Related Projects

 * ESAPI
 * XSS_(Cross_Site_Scripting)_Prevention_Cheat_Sheet
 * XSS_Filter_Evasion_Cheat_Sheet


 * }

= Get Involved = Try Version 1.0 Out:
 * ESAPI vs Others Encoding Comparison Table: http://boldersecurity.github.io/encoder-comparison-reference/

Fork the Code! Create a Pull Request! Open Issues and Enhancement Requests!
 * Source Code on Github: https://github.com/boldersecurity/encoder-comparison-reference

= What I did with this tool =
 * "At Blackboard, we used it to further train Developers on how each encoding method differs from others. We used it to explain to Architects why the native framework encoding libraries were inadequate" ~Stephanie Tan

= Road Map = As of XXX, the priorities are:
 * xxx
 * xxx
 * xxx

Involvement in the development and promotion of XXX is actively encouraged! You do not have to be a security expert in order to contribute. Some of the ways you can help:
 * xxx
 * xxx

=Project About=