Reform Encoding Library

Michael Eddington (meddington@phed.org Katyn divx

Braveheart rip

Prison of the Dead hd

)

20 Years After ipod The Bonfire of the Vanities ipod

I Love You, Beth Cooper movies

Two Rode Together movie full Deliver Us from Eva psp

PCU movies Bringing Down the House film

Journey to the Center of the Earth the movie Amistad download

Web applications face any number of threats; one of them is cross-site scripting and related injection attacks.  90% of all web applications contain cross-site scripting attacks because they are easy to introduce, and the proper tools are not always available to prevent them.  There is no good single library that provides all the functions required by developers to incorporate a fix into there code that will stand up to the test of time and continual research in the field.  The Reform library attempts to provide a solid set of functions for encoding output for the most common context targets in web applications (e.g. HTML, XML, JavaScript, etc).  The library also takes a conservative view of what are allowable characters based on historical vulnerabilities, and current injection techniques.

Shadow Man release

Transformers

Project adopted by OWASPThis project has been adopted by OWASP, the new project page can be found heretranssiberian download free

4 comments

4 Comments so far

  1. The html blog | 10 code snippets for PHP developers November 3rd, 2008 4:51 pm

    [...] face any number of threats; one of them is cross-site scripting and related injection attacks. The Reform library attempts to provide a solid set of functions for encoding output for the most common context [...]

  2. 10 code snippets for PHP developers | Bookmarks April 20th, 2009 8:15 pm

    [...] face any number of threats; one of them is cross-site scripting and related injection attacks. The Reform library attempts to provide a solid set of functions for encoding output for the most common context [...]

  3. Luis Aveiga May 27th, 2009 5:50 pm

    Hi! I was reading about Ajax security and I found the Reform Library in OWASP, then I came here looking for help.

    I use JSON to send messages between PHP and Javascript. I read also that for JSON I had to return it with an object on the outside. Ok.

    My question or doubt is “Do I still need to use Reform?” (I’m not sure if it’s only for XML responses)

    If so, please, can you give some little examples of where & how can I use it. I’ve been also looking for more information about this topic but still without good results. That’s why I came to the source.

    Thanks :)

  4. 10 code snippets for PHP developers « News May 29th, 2009 5:13 am

    [...] face any number of threats; one of them is cross-site scripting and related injection attacks. The Reform library attempts to provide a solid set of functions for encoding output for the most common context [...]

Leave a comment

mukkamu