OWASP

All

1.2k repositories

ASVS
Public
Application Security Verification Standard
HTML
•
Creative Commons Attribution Share Alike 4.0 International
•668•2.7k•53•2•Updated Nov 11, 2024Nov 11, 2024
pytm
Public
A Pythonic framework for threat modeling
diagram dataflow threat-modeling threats sequence-diagram secure-development data-flow-diagram dfd pythonic-framework threat-modeling-from-code
Python
•
Other
•174•918•35•9•Updated Nov 11, 2024Nov 11, 2024
www-chapter-kalasalingam-academy-of-research-and-education
Public
OWASP Foundation Web Respository
HTML
•2•2•0•1•Updated Nov 11, 2024Nov 11, 2024
Nest
Public
Explore OWASP and be a part of it
api metadata events rest taxonomy projects owasp nest chapters committees
Python
•
MIT License
•11•9•11•2•Updated Nov 11, 2024Nov 11, 2024
cornucopia
Public
The source files and tools needed to build the OWASP Cornucopia decks in various languages
card card-game gamification threat-modeling
Python
•
Other
•22•45•6•0•Updated Nov 11, 2024Nov 11, 2024
www-project-top-10-for-large-language-model-applications
Public
OWASP Foundation Web Respository
TeX
•
Other
•140•569•27•1•Updated Nov 11, 2024Nov 11, 2024
wrongsecrets
Public
Vulnerable app with examples showing how to not use secrets
java docker kubernetes aws security vault azure gcp secrets owasp
Java
•
GNU Affero General Public License v3.0
•356•1.2k•25•3•Updated Nov 11, 2024Nov 11, 2024
www-project-dungeons-and-daemons
Public
This repository contains OWASP Dungeons & Daemons a collection of security games. It's purpose is to promote security awareness and practices.
Svelte
•
Creative Commons Attribution Share Alike 4.0 International
•0•3•0•0•Updated Nov 11, 2024Nov 11, 2024
wrongsecrets-ctf-party
Public
Run Capture the Flags and Security Trainings with OWASP WrongSecrets
git docker kubernetes aws security ctf training-materials ctfd hacktoberfest
JavaScript
•
Apache License 2.0
•130•43•7•15•Updated Nov 11, 2024Nov 11, 2024
threat-dragon
Public
An open source threat modeling tool from OWASP
owasp threat-modeling sdlc threat-dragon owasp-threat-dragon
JavaScript
•
Apache License 2.0
•251•931•61•1•Updated Nov 11, 2024Nov 11, 2024
www-chapter-germany
Public
OWASP Foundation Web Respository
HTML
•27•18•0•0•Updated Nov 11, 2024Nov 11, 2024
OpenCRE
Public
security security-audit standards
Python
•
Creative Commons Zero v1.0 Universal
•33•80•68•9•Updated Nov 11, 2024Nov 11, 2024
www-project-ai-security-and-privacy-guide
Public
OWASP Foundation Web Respository
HTML
•53•206•6•4•Updated Nov 11, 2024Nov 11, 2024
owasp.github.io
Public
OWASP Foundation main site repository
HTML
•
Creative Commons Attribution Share Alike 4.0 International
•265•532•9•6•Updated Nov 11, 2024Nov 11, 2024
www-community
Public
OWASP Community Pages are a place where OWASP can accept community contributions for security-related content.
appsec community-project owasp
HTML
•683•1.1k•13•3•Updated Nov 11, 2024Nov 11, 2024
www-project-juice-shop
Public
OWASP Foundation Web Respository
hacktoberfest
HTML
•151•68•0•0•Updated Nov 10, 2024Nov 10, 2024
owasp-mastg
Public
The Mobile Application Security Testing Guide (MASTG) is a comprehensive manual for mobile app security testing and reverse engineering. It describes the technical processes for verifying the controls listed in the OWASP Mobile Application Security Verification Standard (MASVS).
static-analysis android-application ios-app dynamic-analysis pentesting mobile-security network-analysis mast reverse-enginnering runtime-analysis
Python
•
Creative Commons Attribution Share Alike 4.0 International
•2.3k•12k•318•35•Updated Nov 10, 2024Nov 10, 2024
www-chapter-london
Public
OWASP Foundation Web Respository
HTML
•57•9•0•0•Updated Nov 10, 2024Nov 10, 2024
Security-Champions
Public
0•0•0•0•Updated Nov 10, 2024Nov 10, 2024
www-chapter-sao-paulo
Public
OWASP Foundation Web Respository
HTML
•6•10•1•0•Updated Nov 10, 2024Nov 10, 2024
www-chapter-los-angeles
Public
OWASP Foundation Web Respository
HTML
•12•6•0•2•Updated Nov 10, 2024Nov 10, 2024
www-project-secure-headers
Public
The OWASP Secure Headers Project
http owasp secure headers
Python
•
Apache License 2.0
•36•135•0•0•Updated Nov 10, 2024Nov 10, 2024
german-owasp-day
Public
German OWASP Day conference site & presentation archive
HTML
•15•20•1•0•Updated Nov 9, 2024Nov 9, 2024
Nettacker
Public
Automated Penetration Testing Framework - Open-Source Vulnerability Scanner - Vulnerability Management
python automation bruteforce owasp cve network-analysis vulnerability-management information-gathering portscanner vulnerability-scanner
Python
•
Apache License 2.0
•772•3.6k•21•8•Updated Nov 8, 2024Nov 8, 2024
www-chapter-cincinnati
Public
OWASP Cincinnati chapter web repository
HTML
•4•4•0•0•Updated Nov 8, 2024Nov 8, 2024
IoTGoat
Public
IoTGoat is a deliberately insecure firmware created to educate software developers and security professionals with testing commonly found vulnerabilities in IoT devices.
firmware openwrt iot-security embedded-linux iot-security-testing firmware-security owasp vulnerability-challenges
C
•
MIT License
•128•694•1•2•Updated Nov 8, 2024Nov 8, 2024
wrongsecrets-binaries
Public
Source code for the Binaries of OWASP WrongSecrets
hacktoberfest
C
•
GNU Affero General Public License v3.0
•6•10•5•1•Updated Nov 8, 2024Nov 8, 2024
www-chapter-bristol-uk
Public
OWASP Foundation chapter Bristol UK
HTML
•8•1•0•0•Updated Nov 8, 2024Nov 8, 2024
www-project-threat-dragon
Public
OWASP Foundation Threat Dragon Project Web Repository
security-tools owasp appsec
HTML
•
Apache License 2.0
•25•72•1•0•Updated Nov 8, 2024Nov 8, 2024
www-project-developer-guide
Public
OWASP Project Developer Guide - Document and Project Web pages
owasp owasp-developer-guide
HTML
•
Creative Commons Attribution Share Alike 4.0 International
•23•82•8•1•Updated Nov 8, 2024Nov 8, 2024