Over a million developers have joined DZone.
DZone's Guide to

Application Security

The DZone Guide to Application Security addresses modern software vulnerabilities and describes strategies that developers can use to build more secure applications. It covers common security flaws, OWASP tools and guidelines, and general methods for coding securely.

Free 30-page ebook

DZone Member Feedback

"Application security is a priority in my projects (as it should be in anyone's project) so any insight I can glean from other people is immensely valuable. Besides, I passed the guide along to my CSO and he loved it."

Hendry Betts, DZone Reader

"It's a really good guide to share with development teams and make them understand the need and importance of security."

Prasad Pokala, DZone Reader

"Amazing guide to get everyone thinking about the best time to implement security...before you deploy it."

Jose Gonzalez, DZone Reader

"An excellent guide of modern Application Security issues."

Harry Geller, DZone Reader


Table of Contents

Letter From the Editor
Executive Summary
Key Research Findings
Ten Steps To Securing Your Software
Diving Deeper Into The Application Security Ecosystem
The Developer's Security Toolchain
Introducing Security Flaws At Agile Speed
Attacking The Client
Learn To Hack Your Own Code
Application Security Executive Insights
The Secure Application Checklist
Solutions Directory

Interactive Preview


  • Featured
  • Latest
  • Popular
Continuous Delivery
The DZone 2014 Guide to Continuous Delivery provides data, ideas, and solutions that your organization can use to drastically improve its software production process.
The Java Ecosystem
The DZone Guide to the Java Ecosystem is an essential publication for understanding current research and trends surrounding Java development. It covers benefits of recent language updates, microservices and containers as they apply to Java, practical monitoring advice, and reactive programming principles.
Mobile Development
The DZone 2014 Guide to Mobile Development gives readers a full picture of the various approaches to mobile development, enabling them to overcome its biggest obstacles.
Enterprise Integration
DZone’s 2014 Guide to Enterprise Integration is a unique resource for developers and architects to learn how industry experts are handling integration in legacy enterprise systems, modern systems, and massive web-scale systems. It contains resources that will help you succeed with modern architectural patterns and application integration.
Internet of Things
DZone’s 2014 Guide to Internet of Things is an early mover’s map for navigating this bleeding edge space and finding your place in it.
Big Data Guide
DZone’s 2014 Guide to Big Data is the definitive resource for learning how industry experts are handling the massive growth and diversity of data. It contains resources that will help you navigate and excel in the world of Big Data management.
Cloud Platforms
The 2014 DZone Cloud Platform Research Report brings together worldwide cloud providers into one free, exclusive report that offers impartial insight into 39 specific cloud platform providers.
Modern Java
The key to the modernization of Java is the energy and enthusiasm of the Java developer community at large. In the 2016 Guide to Modern Java, we cover how Java 8 improves the developer experience and preview features of Java 9. Discover how the JVM landscape is changing, 7 habits of super productive Java developers, and a checklist to build Java 8 APIs. Learn more about Jigsaw, its capabilities, and how to create Java 9 modules. We also explore implementing hash tables and reactive microservices for a flexible architecture.
Continuous Delivery
The DZone Guide to Continuous Delivery has more insight than ever into the status of DevOps in the enterprise and the obstacles facing developers, not only in their tooling, but within the organization as a whole.
Code Quality and Software Agility
The DZone Guide to Code Quality and Software Agility is an invaluable resource for understanding the software quality trade-offs at both the code and organizational levels. It covers testing and monitoring strategies, requirements management, team agility, and decision making.
Developer Programs
The DZone Guide to Developer Programs is the largest catalogue of developer programs in the world, and it is the key to understanding the potential benefits of each program and finding the perfect program for enriching your life as a coder.
The Internet of Things
The DZone Guide to the Internet of Things offers insight into executive and developer perspectives of IoT trends and concerns, a listing of platform and hardware solutions to facilitate IoT development, and a comprehensive checklist to help you secure your IoT applications.
{{ card.title }}
{{card.downloads | formatCount }} {{card.views | formatCount }}