TIL that OWASP has a bunch of Top 10 projects other than application security. Some others I found:- Top 10 for LLMs - https://owasp.org/www-project-top-10-for-large-language-mode...- Top 10 for OT - https://ot.owasp.org/- Top 10 for Smart Contracts - https://owasp.org/www-project-smart-contract-top-10/- Top 10 for Open Source Software - https://owasp.org/www-project-open-source-software-top-10/
A better link would be the dedicated site for it, also contains introduction which describes what NHI are: https://owasp.org/www-project-non-human-identities-top-10/20...
I especially enjoyed NHI10:2025 Human Use of NHI.Time to stop all that pesky human use. Switch off the servers too, just to be sure.
This focuses mostly more on internal security (i.e after the attacker already has a foothold inside) versus the classic OWASP that are for external front fracing applications
octonaut ·12 days ago
- Top 10 for LLMs - https://owasp.org/www-project-top-10-for-large-language-mode...
- Top 10 for OT - https://ot.owasp.org/
- Top 10 for Smart Contracts - https://owasp.org/www-project-smart-contract-top-10/
- Top 10 for Open Source Software - https://owasp.org/www-project-open-source-software-top-10/
Show replies
chillax ·13 days ago
Show replies
LoganDark ·13 days ago
Show replies
2d8a875f-39a2-4 ·12 days ago
Time to stop all that pesky human use. Switch off the servers too, just to be sure.
Show replies
mirages ·12 days ago
Show replies