Pinned Repositories
API-Security
OWASP API Security Project
ASVS
Application Security Verification Standard
CheatSheetSeries
The OWASP Cheat Sheet Series was created to provide a concise collection of high value information on specific application security topics.
DevGuide
The OWASP Developer Guide
Go-SCP
Golang Secure Coding Practices guide
mastg
The OWASP Mobile Application Security Testing Guide (MASTG) is a comprehensive manual for mobile app security testing and reverse engineering. It describes technical processes for verifying the OWASP Mobile Security Weakness Enumeration (MASWE) weaknesses, which are in alignment with the OWASP MASVS.
masvs
The OWASP MASVS (Mobile Application Security Verification Standard) is the industry standard for mobile app security.
Nettacker
Automated Penetration Testing Framework - Open-Source Vulnerability Scanner - Vulnerability Management
Top10
Official OWASP Top 10 Document Repository
wstg
The Web Security Testing Guide is a comprehensive Open Source guide to testing the security of web applications and web services.
OWASP's Repositories
OWASP/wstg
The Web Security Testing Guide is a comprehensive Open Source guide to testing the security of web applications and web services.
OWASP/OWASP-VWAD
:warning: This repo is no longer in use. Please refer to https://github.com/OWASP/www-project-vulnerable-web-applications-directory
OWASP/OFFAT
The OWASP OFFAT tool autonomously assesses your API for prevalent vulnerabilities, though full compatibility with OAS v3 is pending. The project remains a work in progress, continuously evolving towards completion.
OWASP/www-project-web-security-testing-guide
The Web Security Testing Guide (WSTG) Project produces the premier cybersecurity testing resource for web application developers and security professionals.
OWASP/www-project-threat-dragon
OWASP Foundation Threat Dragon Project Web Repository
OWASP/www-project-vulnerable-web-applications-directory
The OWASP Vulnerable Web Applications Directory Project (VWAD) is a comprehensive and well maintained registry of all known vulnerable web applications currently available.
OWASP/www-project-top-10-infrastructure-security-risks
OWASP Top 10 Infrastructure Security Risks
OWASP/www-project-modsecurity-core-rule-set
OWASP Foundation Web Respository
OWASP/AISVS
OWASP/www-project-operational-technology-top-10
OWASP Foundation web repository
OWASP/www-chapter-coimbatore
OWASP Coimbatore's Web & Project Repository
OWASP/www-project-nightingale
OWASP Foundation Web Respository
OWASP/www-chapter-austin
OWASP Foundation Web Respository
OWASP/www-chapter-jis-university-student-chapter
OWASP Foundation web repository
OWASP/www-project-secure-by-design-framework
OWASP Foundation web repository
OWASP/www-chapter-beja
OWASP Beja Chapter Web Respository
OWASP/www-chapter-cologne
OWASP Foundation web repository
OWASP/www-chapter-national-institute-of-engineering-mysuru
OWASP Foundation Web Respository
OWASP/www-chapter-cairo
OWASP Foundation Web Respository
OWASP/www-chapter-dorset
OWASP Foundation Web Respository
OWASP/www-chapter-manchester
OWASP Foundation Web Respository
OWASP/www-project-devguard
OWASP Foundation Web Respository
OWASP/www-chapter-belgium
OWASP Foundation Web Respository
OWASP/www-chapter-nakhchivan
OWASP Foundation web repository
OWASP/www-chapter-jaihind-college-of-engineering-kuran
OWASP Foundation web repository
OWASP/www-chapter-kanpur
OWASP Foundation Web Respository
OWASP/www-chapter-maceio
OWASP Foundation web repository
OWASP/www-chapter-managua
OWASP Foundation web repository
OWASP/www-project-let-s-threat-model
OWASP Foundation web repository
OWASP/www-project-lets-threat-model
OWASP Foundation web repository