I really want OWASP to be high quality and up-to-date because I feel like there are too many commercial efforts out there; it takes away from the old school hacker community spirit to see all these books on Amazon, hack this, and hack that. OWASP folks are really great people, and I feel like there could be more urgency and edge to what they do.
OWASP is fantastic organisation of Web Application Professionals. Some of their early work was the publication of the OWASP Top Ten, which went a long way to highlighting the importance web application security to organisations.
But they have become less and less relevant in recent years, rather than more relevant. Their previous work on the OWASP Testing Guide, and OWASP Developer Guide are excellent, but are becoming dated now; there are several efforts to bring this up to date.
https://github.com/OWASP/DevGuide/blob/master/DevGuide3.0/03...