OWASP

All

1.3k repositories

www-project-ai-security-and-privacy-guide
Public
OWASP Foundation Web Respository
HTML
•67•287•8•9•Updated Jul 31, 2025Jul 31, 2025
wrongsecrets
Public
Vulnerable app with examples showing how to not use secrets
java docker kubernetes aws security vault azure gcp secrets owasp
Java
•
GNU Affero General Public License v3.0
•458•1.3k•26•5•Updated Jul 31, 2025Jul 31, 2025
www-chapter-bangkok
Public
OWASP Foundation Web Respository
HTML
•0•2•0•0•Updated Jul 31, 2025Jul 31, 2025
cornucopia
Public
The source files and tools needed to build the OWASP Cornucopia decks in various languages
cardgame games card-games owasp gamification gameserver threat-modeling appsec requirements-analysis
Python
•
Other
•29•74•28•2•Updated Jul 31, 2025Jul 31, 2025
mastg
Public
The OWASP Mobile Application Security Testing Guide (MASTG) is a comprehensive manual for mobile app security testing and reverse engineering. It describes technical processes for verifying the OWASP Mobile Security Weakness Enumeration (MASWE) weaknesses, which are in alignment with the OWASP MASVS.
android ios static-analysis reverse-engineering hacking mobile-app android-application ios-app dynamic-analysis pentesting
Python
•
Creative Commons Attribution Share Alike 4.0 International
•2.5k•12k•310•32•Updated Jul 31, 2025Jul 31, 2025
Nest
Public
Your gateway to OWASP. Discover, engage, and help shape the future!
react python graphql kubernetes django typescript rest nextjs k8s gsoc
Python
•
MIT License
•169•139•111•30•Updated Jul 31, 2025Jul 31, 2025
www-chapter-seoul
Public
OWASP Foundation Web Respository
HTML
•4•4•0•0•Updated Jul 31, 2025Jul 31, 2025
owasp.github.io
Public
OWASP Foundation main site repository
HTML
•
Creative Commons Attribution Share Alike 4.0 International
•289•597•13•1•Updated Jul 31, 2025Jul 31, 2025
www-community
Public
OWASP Community Pages are a place where OWASP can accept community contributions for security-related content.
appsec community-project owasp
HTML
•750•1.2k•14•5•Updated Jul 31, 2025Jul 31, 2025
www-project-access-log-parser
Public
OWASP Foundation Web Respository
Python
•
GNU Affero General Public License v3.0
•2•10•0•1•Updated Jul 31, 2025Jul 31, 2025
Nettacker
Public
Automated Penetration Testing Framework - Open-Source Vulnerability Scanner - Vulnerability Management
python security automation scanner bruteforce owasp penetration-testing pentesting recon cve
Python
•
Apache License 2.0
•893•4.4k•26•24•Updated Jul 30, 2025Jul 30, 2025
crAPI
Public
completely ridiculous API (crAPI)
api owasp hacktoberfest apisecurity
Java
•
Apache License 2.0
•438•1.3k•35•11•Updated Jul 30, 2025Jul 30, 2025
www-project-operational-technology-top-10
Public
OWASP Foundation web repository
HTML
•
Creative Commons Attribution Share Alike 4.0 International
•8•12•5•2•Updated Jul 30, 2025Jul 30, 2025
www-project-web-security-testing-guide
Public
The Web Security Testing Guide (WSTG) Project produces the premier cybersecurity testing resource for web application developers and security professionals.
owasp owasp-website wstg
HTML
•223•508•0•0•Updated Jul 30, 2025Jul 30, 2025
wstg
Public
The Web Security Testing Guide is a comprehensive Open Source guide to testing the security of web applications and web services.
application-security pentesting bugbounty appsec hacktoberfest security guide best-practices hacking owasp
Dockerfile
•
Creative Commons Attribution Share Alike 4.0 International
•1.5k•8.2k•53•2•Updated Jul 30, 2025Jul 30, 2025
www-chapter-belo-horizonte
Public
OWASP Foundation Web Respository
HTML
•6•6•0•0•Updated Jul 30, 2025Jul 30, 2025
www-chapter-knoxville
Public
OWASP Foundation Web Respository
HTML
•1•0•0•0•Updated Jul 29, 2025Jul 29, 2025
wrongsecrets-ctf-party
Public
Run Capture the Flags and Security Trainings with OWASP WrongSecrets
git docker kubernetes aws security ctf training-materials ctfd hacktoberfest
JavaScript
•
Apache License 2.0
•152•49•8•5•Updated Jul 29, 2025Jul 29, 2025
www-project-ai-maturity-assessment
Public
OWASP Foundation web repository
Python
•
Apache License 2.0
•10•27•0•1•Updated Jul 29, 2025Jul 29, 2025
www-project-hactu8
Public
OWASP Foundation web repository
HTML
•
Other
•0•0•25•0•Updated Jul 29, 2025Jul 29, 2025
www-project-product-security-capability-framework
Public
OWASP Foundation Web Respository
HTML
•
Other
•0•2•0•0•Updated Jul 29, 2025Jul 29, 2025
owasp-scs
Public
OWASP Smart Contract Security (SCS) Project
Creative Commons Attribution Share Alike 4.0 International
•8•21•1•0•Updated Jul 29, 2025Jul 29, 2025
www-chapter-london
Public
OWASP Foundation Web Respository
HTML
•56•10•0•0•Updated Jul 29, 2025Jul 29, 2025
threat-dragon
Public
An open source threat modeling tool from OWASP
owasp threat-modeling sdlc threat-dragon owasp-threat-dragon
JavaScript
•
Apache License 2.0
•302•1.1k•85•2•Updated Jul 29, 2025Jul 29, 2025
wrongsecrets-binaries
Public
Source code for the Binaries of OWASP WrongSecrets
hacktoberfest
C
•
GNU Affero General Public License v3.0
•6•11•3•2•Updated Jul 29, 2025Jul 29, 2025
owasp-istg
Public
The IoT Security Testing Guide (ISTG) provides a comprehensive methodology for penetration tests in the IoT field, offering flexibility to adapt innovations, and developments in the IoT market while still ensuring comparability of test results.
test-cases checklist security penetration-testing assurance testing-framework security-testing iotsecurity embedded-security compliancy-checklist
Python
•
Creative Commons Attribution Share Alike 4.0 International
•16•105•5•0•Updated Jul 29, 2025Jul 29, 2025
www-chapter-minneapolis-st-paul
Public
OWASP Foundation Web Respository
HTML
•6•3•0•0•Updated Jul 29, 2025Jul 29, 2025
www-chapter-los-angeles
Public
OWASP Foundation Web Respository
HTML
•12•7•0•0•Updated Jul 29, 2025Jul 29, 2025
www-project-fiasse
Public
OWASP Foundation web repository
HTML
•
Creative Commons Attribution Share Alike 4.0 International
•0•0•0•0•Updated Jul 28, 2025Jul 28, 2025
AISVS
Public
Python
•
Creative Commons Attribution Share Alike 4.0 International
•19•24•4•1•Updated Jul 28, 2025Jul 28, 2025