OWASP AppSensor Guide v2.0 Released
The AppSensor project defines a conceptual framework and methodology that offers prescriptive guidance to implement intrusion detection and automated response into an existing application.
Detect and Respond to Attacks from Within the Application
AppSensor defines over 50 different detection points which can be used to identify a malicious attacker.
AppSensor provides guidance on how to respond once a malicious attacker has been identified. Possible actions include: logging out the user, locking the account or notifying an administrator. More than a dozen response actions are described.
Defending the Application
An attacker often requires numerous probes and attack attempts in order to locate an exploitable vulnerability within the application. By using AppSensor it is possible to identify and eliminate the threat of an attacker before they are able to successfully identify an exploitable flaw.
The core of the book is arranged into the following parts:
I : AppSensor overview II : Illustrative case studies III : Making it happen IV : Demonstration implementations V : Model dashboards VI : Reference materials.