Skip to content
@OWASP

OWASP

The OWASP Foundation

Popular repositories Loading

  1. CheatSheetSeries CheatSheetSeries Public

    The OWASP Cheat Sheet Series was created to provide a concise collection of high value information on specific application security topics.

    Python 31.3k 4.4k

  2. mastg mastg Public

    The OWASP Mobile Application Security Testing Guide (MASTG) is a comprehensive manual for mobile app security testing and reverse engineering. It describes technical processes for verifying the OWA…

    Python 12.7k 2.7k

  3. wstg wstg Public

    The Web Security Testing Guide is a comprehensive Open Source guide to testing the security of web applications and web services.

    8.8k 1.5k

  4. Go-SCP Go-SCP Public

    Golang Secure Coding Practices guide

    Go 5.2k 397

  5. Top10 Top10 Public

    Official OWASP Top 10 Document Repository

    HTML 5.2k 1k

  6. Nettacker Nettacker Public

    Automated Penetration Testing Framework - Open-Source Vulnerability Scanner - Vulnerability Management

    Python 4.8k 996

Repositories

Showing 10 of 1348 repositories
  • www-chapter-austin Public

    OWASP Foundation Web Respository

    OWASP/www-chapter-austin’s past year of commit activity
    HTML 4 11 0 2 Updated Feb 8, 2026
  • cornucopia Public

    The source files and tools needed to build the OWASP Cornucopia decks in various languages

    OWASP/cornucopia’s past year of commit activity
    Python 92 CC-BY-SA-4.0 50 26 (12 issues need help) 12 Updated Feb 7, 2026
  • Nest Public

    Your gateway to OWASP. Discover, engage, and help shape the future!

    OWASP/Nest’s past year of commit activity
    Python 361 MIT 498 231 68 Updated Feb 7, 2026
  • mastg Public

    The OWASP Mobile Application Security Testing Guide (MASTG) is a comprehensive manual for mobile app security testing and reverse engineering. It describes technical processes for verifying the OWASP Mobile Security Weakness Enumeration (MASWE) weaknesses, which are in alignment with the OWASP MASVS.

    OWASP/mastg’s past year of commit activity
    Python 12,704 CC-BY-SA-4.0 2,667 190 58 Updated Feb 7, 2026
  • wrongsecrets-ctf-party Public Forked from juice-shop/multi-juicer

    Run Capture the Flags and Security Trainings with OWASP WrongSecrets

    OWASP/wrongsecrets-ctf-party’s past year of commit activity
    JavaScript 54 Apache-2.0 177 7 (5 issues need help) 16 Updated Feb 7, 2026
  • www-project-web-security-testing-guide Public

    The Web Security Testing Guide (WSTG) Project produces the premier cybersecurity testing resource for web application developers and security professionals.

    OWASP/www-project-web-security-testing-guide’s past year of commit activity
    HTML 553 236 0 1 Updated Feb 7, 2026
  • wstg Public

    The Web Security Testing Guide is a comprehensive Open Source guide to testing the security of web applications and web services.

    OWASP/wstg’s past year of commit activity
    8,814 CC-BY-SA-4.0 1,548 50 (26 issues need help) 7 Updated Feb 7, 2026
  • www-project-csrfguard Public

    The aim of this project is to protect Java applications against CSRF attacks with the use of Synchronizer Tokens

    OWASP/www-project-csrfguard’s past year of commit activity
    Java 90 BSD-3-Clause 50 9 (3 issues need help) 6 Updated Feb 7, 2026
  • www-chapter-innsbruck Public

    OWASP Foundation web repository

    OWASP/www-chapter-innsbruck’s past year of commit activity
    HTML 0 1 0 2 Updated Feb 7, 2026
  • owasp.github.io Public

    OWASP Foundation main site repository

    OWASP/owasp.github.io’s past year of commit activity
    HTML 630 CC-BY-SA-4.0 306 2 1 Updated Feb 7, 2026
View all repositories