| title | layout | tab | order | tags |
|---|---|---|---|---|
Historical |
true |
2 |
dev-guide, developer guide |
{: .image-right }
The OWASP Developer Guide is the original OWASP project. It was first published in 2002 under the title 'A Guide to Building Secure Web Applications and Web Services'. Since then, the web has come a long way. Unfortunately, the original Developer Guide never really took off with the intended audience: developers. The original guide was more of a 'how to perform a web application penetration test', material now better covered in the OWASP Web Security Testing Guide.
The developer guide has gone through several iterations since then and is now at version 4.x . This version does not seek to be a comprehensive and authoritative text; rather think of it as a text-based Wayfinder Guide to security projects and salient concepts, or a bit like a 'Lonely Planet' guide to AppSec for developers.
Collected here are the previous versions of the OWASP Developer Guide that can still be accessed. OWASP has a podcast on The History of the OWASP Developer Guide which discusses the history and future of the project.
Developer Guide 3.0 (abandoned April 2021)
- English Word
Developer Guide 2.01 (July 2005)
- English Word
Developer Guide 2.0 (July 2005)
Developer Guide 1.1.1 (September 2002)
Developer Guide 1.1 (September 2002)
- English PDF
Developer Guide 1.0 (June 2002)
- English PDF
We are still looking for the original Word documents for versions 1.x (1.0, 1.1 and 1.1.1), if you have any of these then please get in touch.