Applying OWASP 2017: Mitigating Security Misconfiguration