Application of the OWASP Framework to Identify and Remediate Vulnerabilities in Java Web Applications

This study examines how the Open Web Application Security Project (OWASP) uses the methodology to assess security vulnerabilities in Java web applications.Through a literature review, a comparative evaluation of OWASP with alternative penetration testing methods was performed.Pre-experimental quantitative methodology was used for the analysis.The results of the audit of Java web applications conducted by 17 developers showed that the Open Web Application Security Project identified significant vulnerabilities, such as injection attacks, access control issues, and misconfiguration.The study demonstrates that OWASP performs well in assessing web application security threats and providing guidelines for correcting them.Its limitations include the lack of a comparison group and small sample size.Further research is needed on how to integrate OWASP with automation tools to make audits more efficient.