• 2 Updated Sep 25, 2018
  • XSLT 117 30 Updated Sep 25, 2018
  • In-Depth DNS Enumeration and Network Mapping

    Go 213 23 Apache-2.0 Updated Sep 24, 2018
  • The Mobile Application Security Verification Standard (MASVS) is a standard for mobile app security.

    Python 267 77 Updated Sep 24, 2018
  • O-Saft - OWASP SSL advanced forensic tool

    Perl 209 52 GPL-2.0 Updated Sep 24, 2018
  • OWASP Norway Day 2018

    HTML 2 Updated Sep 24, 2018
  • Web and mobile application security training platform

    Java 508 156 1 issue needs help Updated Sep 24, 2018
  • A vulnerable version of Rails that follows the OWASP Top 10

    HTML 478 184 MIT Updated Sep 24, 2018
  • Official OWASP Top 10 Document Repository

    HTML 1,100 211 Updated Sep 24, 2018
  • The Mobile Security Testing Guide (MSTG) is a comprehensive manual for mobile app security testing and reverse engineering.

    HTML 3,178 556 3 issues need help Updated Sep 24, 2018
  • German OWASP Day conference site & presentation archive

    HTML 3 3 Updated Sep 23, 2018
  • OWASP iGoat (Swift) - A Damn Vulnerable Swift Application for iOS

    Objective-C 109 30 GPL-3.0 Updated Sep 23, 2018
  • CSS 2 5 Updated Sep 22, 2018
  • The OWASP Java Encoder is a Java 1.5+ simple-to-use drop-in high-performance encoder class with no dependencies and little baggage. This project will help Java web developers defend against Cross Site Scripting!

    Java 170 44 BSD-3-Clause Updated Sep 16, 2018
  • AppSec IL Conference 2018

    CSS 5 Updated Sep 14, 2018
  • 1 1 Updated Sep 11, 2018
  • The OWASP NodeGoat project provides an environment to learn how OWASP Top 10 security risks apply to web applications developed using Node.js and how to effectively address them.

    HTML 732 351 Apache-2.0 Updated Sep 11, 2018
  • Women in AppSec Respository

    Updated Sep 9, 2018
  • OWASP Benchmark is a test suite designed to verify the speed and accuracy of software vulnerability detection tools. A fully runnable web app written in Java, it supports analysis by Static (SAST), Dynamic (DAST), and Runtime (IAST) tools that support Java. The idea is that since it is fully runnable and all the vulnerabilities are actually expl…

    Java 108 66 GPL-2.0 Updated Sep 7, 2018
  • Application Security Automation

    Ruby 203 52 Apache-2.0 4 issues need help Updated Sep 6, 2018
  • Repo to hold mapping of user-security-stories

    11 3 Apache-2.0 Updated Sep 4, 2018
  • The purpose of this application is to warn the user (via various communication mechanisms) whenever their laptop accessed. This small application was developed and tested in python in Linux machine is likely to work well on the Raspberry Pi as well.

    Python 9 9 MIT Updated Sep 1, 2018
  • Content for OWASP Summit 2017 site

    CSS 79 227 Apache-2.0 Updated Aug 30, 2018
  • 1 Updated Aug 29, 2018
  • 6 Updated Aug 29, 2018
  • Swag for the OWASP projects and chapters

    9 9 Apache-2.0 Updated Aug 28, 2018
  • Node application to help managing Maturity Models like the ones created by BSIMM and OpenSAMM

    JavaScript 78 26 Apache-2.0 Updated Aug 28, 2018
  • 1 issue needs help Updated Aug 27, 2018
  • OWASP WebScarab

    Java 402 164 GPL-2.0 Updated Aug 26, 2018
  • 84 40 Updated Aug 22, 2018