Repositories list

• owasp.github.io

  Public
  OWASP Foundation main site repository

  HTML

  •

  Creative Commons Attribution Share Alike 4.0 International

  •272•544•9•7•Updated Dec 28, 2024Dec 28, 2024

• www-community

  Public
  OWASP Community Pages are a place where OWASP can accept community contributions for security-related content.

  appseccommunity-projectowasp

  HTML

  •694•1.1k•11•2•Updated Dec 28, 2024Dec 28, 2024

• SecureCodingDojo

  Public
  The Secure Coding Dojo is a platform for delivering secure coding knowledge.

  secure-codingtraining-portalowasp

  PHP

  •

  Apache License 2.0

  •142•556•8•0•Updated Dec 28, 2024Dec 28, 2024

• www-project-untrust

  Public
  OWASP Foundation Web Respository

  Java

  •

  MIT License

  •0•0•1•0•Updated Dec 27, 2024Dec 27, 2024

• threat-dragon

  Public
  An open source threat modeling tool from OWASP

  owaspthreat-modelingsdlc+ 2threat-dragonowasp-threat-dragon

  JavaScript

  •

  Apache License 2.0

  •260•974•66•7•Updated Dec 27, 2024Dec 27, 2024

• www-project-top-10-for-large-language-model-applications

  Public
  OWASP Foundation Web Respository

  TeX

  •

  Other

  •152•608•25•3•Updated Dec 27, 2024Dec 27, 2024

• cornucopia

  Public
  The source files and tools needed to build the OWASP Cornucopia decks in various languages

  cardcard-gamegamification+ 1threat-modeling

  Python

  •

  Other

  •23•47•6•2•Updated Dec 27, 2024Dec 27, 2024

• Nest

  Public
  Your gateway to OWASP. Discover, engage, and help shape the future!

  reactapimetadata+ 16eventsdjangotypescriptresttaxonomyprojectsdjango-rest-framework+ 9

  TypeScript

  •

  MIT License

  •25•23•22•3•Updated Dec 27, 2024Dec 27, 2024

• www-chapter-san-antonio

  Public
  OWASP Foundation Web Respository

  HTML

  •4•1•0•0•Updated Dec 27, 2024Dec 27, 2024

• ASVS

  Public
  Application Security Verification Standard

  HTML

  •

  Creative Commons Attribution Share Alike 4.0 International

  •675•2.8k•58•1•Updated Dec 26, 2024Dec 26, 2024

• www-project-threat-dragon

  Public
  OWASP Foundation Threat Dragon Project Web Repository

  security-toolsowaspappsec

  HTML

  •

  Apache License 2.0

  •28•74•1•2•Updated Dec 26, 2024Dec 26, 2024

• www-project-threat-and-safeguard-matrix

  Public
  OWASP Foundation Web Respository

  HTML

  •

  Other

  •6•22•0•0•Updated Dec 26, 2024Dec 26, 2024

• Nettacker

  Public
  Automated Penetration Testing Framework - Open-Source Vulnerability Scanner - Vulnerability Management

  pythonsecurityautomation+ 17scannerbruteforceowasppenetration-testingpentestingreconcve+ 10

  Python

  •

  Apache License 2.0

  •800•3.7k•21•11•Updated Dec 26, 2024Dec 26, 2024

• owasp-mastg

  Public
  The Mobile Application Security Testing Guide (MASTG) is a comprehensive manual for mobile app security testing and reverse engineering. It describes the technical processes for verifying the controls listed in the OWASP Mobile Application Security Verification Standard (MASVS).

  static-analysisandroid-applicationios-app+ 16dynamic-analysispentestingmobile-securitynetwork-analysismastreverse-enginneringruntime-analysis+ 9

  Python

  •

  Creative Commons Attribution Share Alike 4.0 International

  •2.4k•12k•316•35•Updated Dec 26, 2024Dec 26, 2024

• www-chapter-netherlands

  Public
  OWASP Foundation Web Respository

  HTML

  •4•5•1•0•Updated Dec 25, 2024Dec 25, 2024

• pytm

  Public
  A Pythonic framework for threat modeling

  diagramdataflowthreat-modeling+ 7threatssequence-diagramsecure-developmentdata-flow-diagramdfdpythonic-frameworkthreat-modeling-from-code

  Python

  •

  Other

  •177•937•37•9•Updated Dec 25, 2024Dec 25, 2024

• www-chapter-cuddalore

  Public
  OWASP Foundation Web Respository

  Ruby

  •5•2•0•0•Updated Dec 24, 2024Dec 24, 2024

• www-chapter-colorado-springs

  Public
  OWASP Colorado Springs Chapter Homepage

  HTML

  •5•5•0•1•Updated Dec 24, 2024Dec 24, 2024

• www-project-non-human-identities-top-10

  Public
  OWASP Non-Human Identities Top 10

  HTML

  •

  Other

  •5•5•0•1•Updated Dec 23, 2024Dec 23, 2024

• www-project-secure-headers

  Public
  The OWASP Secure Headers Project

  httpsecurityweb+ 4owaspsecureheadersappsec

  Python

  •

  Apache License 2.0

  •38•140•2•0•Updated Dec 23, 2024Dec 23, 2024

• basconf

  Public
  Boston Application Security Conference

  HTML

  •0•1•0•0•Updated Dec 23, 2024Dec 23, 2024

• owasp-swag

  Public
  Swag for the OWASP projects and chapters

  Apache License 2.0

  •44•43•0•0•Updated Dec 23, 2024Dec 23, 2024

• www-project-dungeons-and-daemons

  Public
  This repository contains OWASP Dungeons & Daemons a collection of security games. It's purpose is to promote security awareness and practices.

  Svelte

  •

  Creative Commons Attribution Share Alike 4.0 International

  •0•3•0•2•Updated Dec 23, 2024Dec 23, 2024

• wrongsecrets

  Public
  Vulnerable app with examples showing how to not use secrets

  javadockerkubernetes+ 16awssecurityvaultazuregcpsecretsowasp+ 9

  Java

  •

  GNU Affero General Public License v3.0

  •372•1.3k•25•4•Updated Dec 23, 2024Dec 23, 2024

• www-committee-chapter

  Public
  OWASP Foundation Web Respository

  PostScript

  •26•16•0•0•Updated Dec 23, 2024Dec 23, 2024

• www-project-it-grc

  Public
  OWASP Foundation Web Respository

  Python

  •11•37•0•0•Updated Dec 22, 2024Dec 22, 2024

• www-project-security-champions-guidebook

  Public
  OWASP Foundation Web Respository

  HTML

  •

  Creative Commons Attribution Share Alike 4.0 International

  •6•19•0•0•Updated Dec 21, 2024Dec 21, 2024

• Security-Champions

  Public
  2•6•0•1•Updated Dec 21, 2024Dec 21, 2024

• www-chapter-germany

  Public
  OWASP Foundation Web Respository

  HTML

  •27•18•0•0•Updated Dec 21, 2024Dec 21, 2024

• www-project-juice-shop

  Public
  OWASP Foundation Web Respository

  hacktoberfest

  HTML

  •154•71•0•0•Updated Dec 20, 2024Dec 20, 2024