Repositories list

• threat-dragon

  Public
  An open source threat modeling tool from OWASP

  owaspthreat-modelingsdlc+ 2threat-dragonowasp-threat-dragon

  JavaScript

  •

  Apache License 2.0

  •251•930•61•1•Updated Nov 10, 2024Nov 10, 2024

• OpenCRE

  Public
  securitysecurity-auditstandards

  Python

  •

  Creative Commons Zero v1.0 Universal

  •33•80•68•11•Updated Nov 10, 2024Nov 10, 2024

• www-project-juice-shop

  Public
  OWASP Foundation Web Respository

  hacktoberfest

  HTML

  •151•68•0•0•Updated Nov 10, 2024Nov 10, 2024

• www-project-ai-security-and-privacy-guide

  Public
  OWASP Foundation Web Respository

  HTML

  •53•206•6•4•Updated Nov 10, 2024Nov 10, 2024

• ASVS

  Public
  Application Security Verification Standard

  HTML

  •

  Creative Commons Attribution Share Alike 4.0 International

  •668•2.7k•52•2•Updated Nov 10, 2024Nov 10, 2024

• owasp-mastg

  Public
  The Mobile Application Security Testing Guide (MASTG) is a comprehensive manual for mobile app security testing and reverse engineering. It describes the technical processes for verifying the controls listed in the OWASP Mobile Application Security Verification Standard (MASVS).

  static-analysisandroid-applicationios-app+ 16dynamic-analysispentestingmobile-securitynetwork-analysismastreverse-enginneringruntime-analysis+ 9

  Python

  •

  Creative Commons Attribution Share Alike 4.0 International

  •2.3k•12k•318•35•Updated Nov 10, 2024Nov 10, 2024

• www-chapter-london

  Public
  OWASP Foundation Web Respository

  HTML

  •57•9•0•0•Updated Nov 10, 2024Nov 10, 2024

• wrongsecrets

  Public
  Vulnerable app with examples showing how to not use secrets

  javadockerkubernetes+ 16awssecurityvaultazuregcpsecretsowasp+ 9

  Java

  •

  GNU Affero General Public License v3.0

  •356•1.2k•25•5•Updated Nov 10, 2024Nov 10, 2024

• Security-Champions

  Public
  0•0•0•0•Updated Nov 10, 2024Nov 10, 2024

• www-chapter-sao-paulo

  Public
  OWASP Foundation Web Respository

  HTML

  •6•10•1•0•Updated Nov 10, 2024Nov 10, 2024

• owasp.github.io

  Public
  OWASP Foundation main site repository

  HTML

  •

  Creative Commons Attribution Share Alike 4.0 International

  •265•532•9•6•Updated Nov 10, 2024Nov 10, 2024

• www-community

  Public
  OWASP Community Pages are a place where OWASP can accept community contributions for security-related content.

  appseccommunity-projectowasp

  HTML

  •683•1.1k•13•3•Updated Nov 10, 2024Nov 10, 2024

• www-chapter-los-angeles

  Public
  OWASP Foundation Web Respository

  HTML

  •12•6•0•2•Updated Nov 10, 2024Nov 10, 2024

• www-project-secure-headers

  Public
  The OWASP Secure Headers Project

  httpowaspsecure+ 1headers

  Python

  •

  Apache License 2.0

  •36•135•0•0•Updated Nov 10, 2024Nov 10, 2024

• german-owasp-day

  Public
  German OWASP Day conference site & presentation archive

  HTML

  •15•20•1•0•Updated Nov 9, 2024Nov 9, 2024

• www-project-top-10-for-large-language-model-applications

  Public
  OWASP Foundation Web Respository

  TeX

  •

  Other

  •140•569•26•0•Updated Nov 9, 2024Nov 9, 2024

• Nettacker

  Public
  Automated Penetration Testing Framework - Open-Source Vulnerability Scanner - Vulnerability Management

  pythonautomationbruteforce+ 17owaspcvenetwork-analysisvulnerability-managementinformation-gatheringportscannervulnerability-scanner+ 10

  Python

  •

  Apache License 2.0

  •771•3.6k•21•8•Updated Nov 8, 2024Nov 8, 2024

• www-chapter-cincinnati

  Public
  OWASP Cincinnati chapter web repository

  HTML

  •4•4•0•0•Updated Nov 8, 2024Nov 8, 2024

• IoTGoat

  Public
  IoTGoat is a deliberately insecure firmware created to educate software developers and security professionals with testing commonly found vulnerabilities in IoT devices.

  firmwareopenwrtiot-security+ 5embedded-linuxiot-security-testingfirmware-securityowaspvulnerability-challenges

  C

  •

  MIT License

  •128•694•1•2•Updated Nov 8, 2024Nov 8, 2024

• cornucopia

  Public
  The source files and tools needed to build the OWASP Cornucopia decks in various languages

  cardcard-gamegamification+ 1threat-modeling

  Python

  •

  Other

  •22•45•6•1•Updated Nov 8, 2024Nov 8, 2024

• wrongsecrets-binaries

  Public
  Source code for the Binaries of OWASP WrongSecrets

  hacktoberfest

  C

  •

  GNU Affero General Public License v3.0

  •6•10•5•1•Updated Nov 8, 2024Nov 8, 2024

• www-chapter-bristol-uk

  Public
  OWASP Foundation chapter Bristol UK

  HTML

  •8•1•0•0•Updated Nov 8, 2024Nov 8, 2024

• www-project-threat-dragon

  Public
  OWASP Foundation Threat Dragon Project Web Repository

  security-toolsowaspappsec

  HTML

  •

  Apache License 2.0

  •25•71•1•0•Updated Nov 8, 2024Nov 8, 2024

• www-project-developer-guide

  Public
  OWASP Project Developer Guide - Document and Project Web pages

  owaspowasp-developer-guide

  HTML

  •

  Creative Commons Attribution Share Alike 4.0 International

  •23•82•8•1•Updated Nov 8, 2024Nov 8, 2024

• www-chapter-germany

  Public
  OWASP Foundation Web Respository

  HTML

  •27•18•0•0•Updated Nov 8, 2024Nov 8, 2024

• www-chapter-mahendra-engineering-college

  Public
  OWASP Foundation Web Respository

  HTML

  •2•1•0•0•Updated Nov 8, 2024Nov 8, 2024

• www-event-2024-AppSecDays-India

  Public
  HTML

  •1•0•0•0•Updated Nov 8, 2024Nov 8, 2024

• Nest

  Public
  Explore OWASP and be a part of it

  apimetadataevents+ 7resttaxonomyprojectsowaspnestchapterscommittees

  Python

  •

  MIT License

  •11•9•11•2•Updated Nov 7, 2024Nov 7, 2024

• www-chapter-cleveland

  Public
  OWASP Foundation Web Respository

  HTML

  •3•1•0•0•Updated Nov 7, 2024Nov 7, 2024

• CheatSheetSeries

  Public
  The OWASP Cheat Sheet Series was created to provide a concise collection of high value information on specific application security topics.

  securitycodebest-practices+ 4application-securityappseccheatsheetsowasp

  Python

  •

  Creative Commons Attribution Share Alike 4.0 International

  •3.9k•28k•50•13•Updated Nov 7, 2024Nov 7, 2024