Pinned Repositories
API-Security
OWASP API Security Project
ASVS
Application Security Verification Standard
CheatSheetSeries
The OWASP Cheat Sheet Series was created to provide a concise collection of high value information on specific application security topics.
DevGuide
The OWASP Developer Guide
Go-SCP
Golang Secure Coding Practices guide
mastg
The OWASP Mobile Application Security Testing Guide (MASTG) is a comprehensive manual for mobile app security testing and reverse engineering. It describes technical processes for verifying the OWASP Mobile Security Weakness Enumeration (MASWE) weaknesses, which are in alignment with the OWASP MASVS.
masvs
The OWASP MASVS (Mobile Application Security Verification Standard) is the industry standard for mobile app security.
Nettacker
Automated Penetration Testing Framework - Open-Source Vulnerability Scanner - Vulnerability Management
Top10
Official OWASP Top 10 Document Repository
wstg
The Web Security Testing Guide is a comprehensive Open Source guide to testing the security of web applications and web services.
OWASP's Repositories
OWASP/DevGuide
The OWASP Developer Guide
OWASP/pytm
A Pythonic framework for threat modeling
OWASP/www-project-developer-guide
OWASP Project Developer Guide - Document and Project Web pages
OWASP/www-project-smart-contract-top-10
OWASP Smart Contract Top 10
OWASP/www-project-artificial-intelligence-vulnerability-scoring-system
OWASP Foundation web repository
OWASP/secure-coding-practices-quick-reference-guide
The Secure Coding Practices Quick-reference Guide from OWASP
OWASP/www-policy
OWASP/www-committee-chapter
OWASP Foundation Web Respository
OWASP/www-project-smart-contract-security-verification-standard
OWASP Smart Contract Securty Verification Standard
OWASP/www-chapter-belo-horizonte
OWASP Foundation Web Respository
OWASP/www-chapter-toronto
OWASP Foundation Web Respository
OWASP/www-chapter-switzerland
OWASP Foundation Web Respository
OWASP/www-committee-project
OWASP Foundation Web Respository
OWASP/www-project-promptme
PromptMe is an educational project that showcases security vulnerabilities in large language models (LLMs) and their web integrations. It includes 10 hands-on challenges inspired by the OWASP LLM Top 10, demonstrating how these vulnerabilities can be discovered and exploited in real-world scenarios.
OWASP/www-chapter-jacksonville
OWASP Foundation Web Repository
OWASP/www-project-coraza-web-application-firewall
OWASP Foundation Web Repository
OWASP/www-project-noir
Attack surface detector that identifies endpoints by static analysis
OWASP/www-project-smart-contract-security-testing-guide
OWASP Foundation web repository
OWASP/www-chapter-dhaka
OWASP Foundation Web Respository
OWASP/www-chapter-saitama
OWASP Foundation Web Respository
OWASP/www-chapter-bangkok
OWASP Foundation Web Respository
OWASP/www-chapter-houston
OWASP Foundation Web Respository
OWASP/www-chapter-panama-city
OWASP Foundation Web Respository
OWASP/www-chapter-ruhrpott
OWASP Foundation web repository
OWASP/www-chapter-shiv-nadar-chennai
OWASP Foundation web repository
OWASP/www-committee-events
OWASP/www-chapter-logrono
OWASP Foundation Web Respository
OWASP/www-project-ai-model-watermarking
OWASP Foundation web repository
OWASP/www-project-fiasse
OWASP Foundation web repository
OWASP/www-project-hack-heroes
OWASP Foundation web repository