Repositories list

• cornucopia

  Public
  The source files and tools needed to build the OWASP Cornucopia decks in various languages

  cardcard-gamegamification+ 1threat-modeling

  Python

  •

  Other

  •22•47•6•0•Updated Dec 4, 2024Dec 4, 2024

• www-project-dependency-check

  Public
  OWASP Foundation Web Respository

  HTML

  •10•14•0•1•Updated Dec 4, 2024Dec 4, 2024

• threat-dragon

  Public
  An open source threat modeling tool from OWASP

  owaspthreat-modelingsdlc+ 2threat-dragonowasp-threat-dragon

  JavaScript

  •

  Apache License 2.0

  •256•945•63•1•Updated Dec 4, 2024Dec 4, 2024

• Nest

  Public
  Your gateway to OWASP. Explore, engage, and help shape the future!

  reactapimetadata+ 13eventsdjangotypescriptresttaxonomyprojectsdjango-rest-framework+ 6

  TypeScript

  •

  MIT License

  •14•12•13•8•Updated Dec 4, 2024Dec 4, 2024

• www-project-proactive-controls

  Public
  OWASP Foundation Web Respository

  Shell

  •

  Creative Commons Attribution Share Alike 4.0 International

  •71•129•7•1•Updated Dec 4, 2024Dec 4, 2024

• owasp.github.io

  Public
  OWASP Foundation main site repository

  HTML

  •

  Creative Commons Attribution Share Alike 4.0 International

  •269•537•9•8•Updated Dec 4, 2024Dec 4, 2024

• www-community

  Public
  OWASP Community Pages are a place where OWASP can accept community contributions for security-related content.

  appseccommunity-projectowasp

  HTML

  •689•1.1k•11•3•Updated Dec 4, 2024Dec 4, 2024

• www-project-aibom

  Public
  OWASP Foundation web repository

  HTML

  •

  Other

  •1•1•0•1•Updated Dec 3, 2024Dec 3, 2024

• www-project-smart-contract-security

  Public
  OWASP Foundation web repository

  HTML

  •

  Other

  •2•0•0•0•Updated Dec 3, 2024Dec 3, 2024

• wrongsecrets-ctf-party

  Public
  Run Capture the Flags and Security Trainings with OWASP WrongSecrets

  gitdockerkubernetes+ 6awssecurityctftraining-materialsctfdhacktoberfest

  JavaScript

  •

  Apache License 2.0

  •132•43•8•6•Updated Dec 3, 2024Dec 3, 2024

• www-chapter-national-institute-of-engineering-mysuru

  Public
  OWASP Foundation Web Respository

  HTML

  •0•3•0•0•Updated Dec 3, 2024Dec 3, 2024

• www-project-web-security-testing-guide

  Public
  The Web Security Testing Guide (WSTG) Project produces the premier cybersecurity testing resource for web application developers and security professionals.

  owaspowasp-websitewstg

  HTML

  •207•454•0•0•Updated Dec 3, 2024Dec 3, 2024

• wstg

  Public
  The Web Security Testing Guide is a comprehensive Open Source guide to testing the security of web applications and web services.

  application-securitypentestingbugbounty+ 8appsechacktoberfestsecurityguidebest-practiceshackingowasp+ 1

  Dockerfile

  •

  Creative Commons Attribution Share Alike 4.0 International

  •1.3k•7.4k•51•1•Updated Dec 3, 2024Dec 3, 2024

• ASVS

  Public
  Application Security Verification Standard

  HTML

  •

  Creative Commons Attribution Share Alike 4.0 International

  •672•2.8k•55•3•Updated Dec 3, 2024Dec 3, 2024

• www-chapter-belo-horizonte

  Public
  OWASP Foundation Web Respository

  HTML

  •6•5•0•0•Updated Dec 3, 2024Dec 3, 2024

• crAPI

  Public
  completely ridiculous API (crAPI)

  apiowasphacktoberfest+ 1apisecurity

  Java

  •

  Apache License 2.0

  •347•1.1k•37•17•Updated Dec 3, 2024Dec 3, 2024

• www-project-asvs-security-evaluation-templates-with-nuclei

  Public
  OWASP ASVS Security Evaluation Templates with Nuclei

  automationwebowasp+ 5nucleipentestasvsnuclei-templateswstg

  Python

  •

  MIT License

  •4•20•0•0•Updated Dec 3, 2024Dec 3, 2024

• www-chapter-germany

  Public
  OWASP Foundation Web Respository

  HTML

  •27•18•0•0•Updated Dec 3, 2024Dec 3, 2024

• www-board

  Public
  HTML

  •10•5•0•0•Updated Dec 3, 2024Dec 3, 2024

• www-chapter-augsburg

  Public
  OWASP Foundation Web Respository

  HTML

  •0•2•0•0•Updated Dec 3, 2024Dec 3, 2024

• www-chapter-newcastle-uk

  Public
  OWASP Foundation Web Respository

  HTML

  •2•1•0•0•Updated Dec 3, 2024Dec 3, 2024

• www-project-csrfguard

  Public
  The aim of this project is to protect Java applications against CSRF attacks with the use of Synchronizer Tokens

  securityowaspcsrf+ 5csrf-protectionhacktoberfestsecurity-toolsjavamaven

  Java

  •

  BSD 3-Clause "New" or "Revised" License

  •46•83•7•0•Updated Dec 2, 2024Dec 2, 2024

• Nettacker

  Public
  Automated Penetration Testing Framework - Open-Source Vulnerability Scanner - Vulnerability Management

  pythonsecurityautomation+ 17scannerbruteforceowasppenetration-testingpentestingreconcve+ 10

  Python

  •

  Apache License 2.0

  •788•3.7k•21•8•Updated Dec 2, 2024Dec 2, 2024

• www-chapter-austin

  Public
  OWASP Foundation Web Respository

  HTML

  •11•4•0•0•Updated Dec 2, 2024Dec 2, 2024

• www-project-top-10-low-code-no-code-security-risks

  Public
  OWASP Low-Code/No-Code Top 10

  cybersecurityinfosecappsec+ 5owasp-top-10nocodelowcodesecurityowasp

  HTML

  •

  Other

  •23•63•5•0•Updated Dec 2, 2024Dec 2, 2024

• www-chapter-syracuse

  Public
  OWASP Foundation Web Respository

  HTML

  •3•1•0•1•Updated Dec 2, 2024Dec 2, 2024

• owasp-mastg

  Public
  The Mobile Application Security Testing Guide (MASTG) is a comprehensive manual for mobile app security testing and reverse engineering. It describes the technical processes for verifying the controls listed in the OWASP Mobile Application Security Verification Standard (MASVS).

  static-analysisandroid-applicationios-app+ 16dynamic-analysispentestingmobile-securitynetwork-analysismastreverse-enginneringruntime-analysis+ 9

  Python

  •

  Creative Commons Attribution Share Alike 4.0 International

  •2.3k•12k•316•36•Updated Dec 2, 2024Dec 2, 2024

• www-event-appsecil

  Public
  SCSS

  •11•1•0•0•Updated Dec 2, 2024Dec 2, 2024

• www--site-theme

  Public
  Contains owasp site theme specific items (headers, footers, json, menus)

  HTML

  •27•9•5•0•Updated Dec 2, 2024Dec 2, 2024

• www-project-cornucopia

  Public
  OWASP Foundation Web Respository

  HTML

  •11•27•1•0•Updated Dec 2, 2024Dec 2, 2024