Stash OWASP Bingo

Stash OWASP Bingo Card
Preview

This bingo card has a free space and 30 words: A1:2013-Injection, A2:2013-Broken Authentication and Session Management, A3:2013-Cross-Site Scripting (XSS), A4:2013-Insecure Direct Object References, A5:2013-Security Misconfiguration, A6:2013-Sensitive Data Exposure, A7:2013-Missing Function Level Access Control, A8:2013-Cross-Site Request Forgery (CSRF), A9:2013-Using Components with Known Vulnerabilities, A10:2013-Unvalidated Redirects and Forwards, A1:2017-Injection, A2:2017-Broken Authentication, A3:2017-Sensitive Data Exposure, A4:2017-XML External Entities (XXE), A5:2017-Broken Access Control, A6:2017-Security Misconfiguration, A7:2017-Cross-Site Scripting (XSS), A8:2017-Insecure Deserialization, A9:2017-Using Components with Known Vulnerabilities, A10:2017-Insufficient Logging & Monitoring, C1:2018-Define Security Requirements, C2:2018-Leverage Security Frameworks and Libraries, C3:2018-Secure Database Access, C4:2018-Encode and Escape Data, C5:2018-Validate All Inputs, C6:2018-Implement Digital Identity, C7:2018-Enforce Access Controls, C8:2018-Protect Data Everywhere, C9:2018-Implement Security Logging and Monitoring and C10:2018-Handle all Errors and Exceptions.

More like this:

API OWASP Bingo | Witch's Brew | Machten Bingo | Combining Like Terms | EG Jobs Bingo 1

Play Online

Share this URL with your players:

For more control of your online game, create a clone of this card first.

Learn how to conduct a bingo game.

Call List

Probabilities

With players vying for a you'll have to call about __ items before someone wins. There's a __% chance that a lucky player would win after calling __ items.

Tip: If you want your game to last longer (on average), add more unique words/images to it.