OWASP

All

1.3k repositories

cornucopia
Public
The source files and tools needed to build the OWASP Cornucopia decks in various languages
cardgame games card-games owasp gamification gameserver threat-modeling appsec requirements-analysis
Python
•
Creative Commons Attribution Share Alike 4.0 International
•50•92•26•11•Updated Feb 8, 2026Feb 8, 2026
Nest
Public
Your gateway to OWASP. Discover, engage, and help shape the future!
react python graphql django typescript rest nextjs gsoc tailwindcss typescript-react
Python
•
MIT License
•498•362•230•67•Updated Feb 8, 2026Feb 8, 2026
nest-sdk-typescript
Public
OWASP Nest API TypeScript SDK
TypeScript
•
MIT License
•2•0•0•1•Updated Feb 8, 2026Feb 8, 2026
nest-sdk-python
Public
OWASP Nest API Python SDK
Python
•
MIT License
•3•2•0•1•Updated Feb 8, 2026Feb 8, 2026
www-project-secure-headers
Public
The OWASP Secure Headers Project
http security web owasp secure headers appsec
Python
•
Apache License 2.0
•43•184•2•0•Updated Feb 8, 2026Feb 8, 2026
www-project-vulnerable-web-applications-directory
Public
The OWASP Vulnerable Web Applications Directory Project (VWAD) is a comprehensive and well maintained registry of all known vulnerable web applications currentl…
owasp appsec webappsec vulnerable-web-app vulnerable-web-application vulnerable-applications
JavaScript
•
Creative Commons Attribution Share Alike 4.0 International
•43•77•1•1•Updated Feb 8, 2026Feb 8, 2026
nest-sdk
Public
OWASP Nest API Go SDK
Go
•
MIT License
•3•0•0•1•Updated Feb 8, 2026Feb 8, 2026
www-chapter-austin
Public
OWASP Foundation Web Respository
HTML
•11•4•0•2•Updated Feb 8, 2026Feb 8, 2026
mastg
Public
The OWASP Mobile Application Security Testing Guide (MASTG) is a comprehensive manual for mobile app security testing and reverse engineering. It describes tech…
android ios static-analysis reverse-engineering hacking mobile-app android-application ios-app dynamic-analysis pentesting
Python
•
Creative Commons Attribution Share Alike 4.0 International
•2.7k•13k•190•58•Updated Feb 7, 2026Feb 7, 2026
wrongsecrets-ctf-party
Public
Run Capture the Flags and Security Trainings with OWASP WrongSecrets
git docker kubernetes aws security ctf training-materials ctfd hacktoberfest
JavaScript
•
Apache License 2.0
•173•54•7•16•Updated Feb 7, 2026Feb 7, 2026
www-project-web-security-testing-guide
Public
The Web Security Testing Guide (WSTG) Project produces the premier cybersecurity testing resource for web application developers and security professionals.
owasp owasp-website wstg
HTML
•236•553•0•1•Updated Feb 7, 2026Feb 7, 2026
wstg
Public
The Web Security Testing Guide is a comprehensive Open Source guide to testing the security of web applications and web services.
security guide best-practices hacking owasp penetration-testing application-security pentesting bugbounty appsec
Creative Commons Attribution Share Alike 4.0 International
•1.5k•8.8k•50•7•Updated Feb 7, 2026Feb 7, 2026
www-project-csrfguard
Public
The aim of this project is to protect Java applications against CSRF attacks with the use of Synchronizer Tokens
java security maven owasp csrf csrf-protection hacktoberfest security-tools
Java
•
BSD 3-Clause "New" or "Revised" License
•50•90•9•6•Updated Feb 7, 2026Feb 7, 2026
www-chapter-innsbruck
Public
OWASP Foundation web repository
HTML
•1•0•0•2•Updated Feb 7, 2026Feb 7, 2026
owasp.github.io
Public
OWASP Foundation main site repository
HTML
•
Creative Commons Attribution Share Alike 4.0 International
•306•630•2•1•Updated Feb 7, 2026Feb 7, 2026
www-project-it-grc
Public
OWASP Foundation Web Respository
Python
•21•69•0•0•Updated Feb 7, 2026Feb 7, 2026
www-project-hactu8
Public
OWASP Foundation web repository
HTML
•
Other
•2•0•28•1•Updated Feb 7, 2026Feb 7, 2026
Nettacker
Public
Automated Penetration Testing Framework - Open-Source Vulnerability Scanner - Vulnerability Management
python security automation scanner bruteforce owasp penetration-testing pentesting recon cve
Python
•
Apache License 2.0
•996•4.8k•44•63•Updated Feb 6, 2026Feb 6, 2026
CheatSheetSeries
Public
The OWASP Cheat Sheet Series was created to provide a concise collection of high value information on specific application security topics.
security code best-practices owasp application-security appsec cheatsheets
Python
•
Creative Commons Attribution Share Alike 4.0 International
•4.4k•31k•45•17•Updated Feb 6, 2026Feb 6, 2026
www-community
Public
OWASP Community Pages are a place where OWASP can accept community contributions for security-related content.
owasp appsec community-project
HTML
•807•1.3k•11•3•Updated Feb 6, 2026Feb 6, 2026
crAPI
Public
completely ridiculous API (crAPI)
api owasp hacktoberfest apisecurity
Java
•
Apache License 2.0
•509•1.4k•28•20•Updated Feb 6, 2026Feb 6, 2026
www-chapter-stuttgart
Public
OWASP Foundation Web Respository
HTML
•3•1•0•0•Updated Feb 6, 2026Feb 6, 2026
owasp-scs
Public
OWASP Smart Contract Security (SCS) Project
Creative Commons Attribution Share Alike 4.0 International
•14•37•0•0•Updated Feb 6, 2026Feb 6, 2026
www-chapter-gla-university-mathura
Public
OWASP Foundation Web Respository
HTML
•1•2•0•2•Updated Feb 6, 2026Feb 6, 2026
www-chapter-seoul
Public
OWASP Foundation Web Respository
HTML
•6•12•0•0•Updated Feb 6, 2026Feb 6, 2026
nest-schema
Public
OWASP Schema
python schema json-schema owasp mkdocs yaml-schema owasp-nest
Python
•
MIT License
•9•6•367•0•Updated Feb 6, 2026Feb 6, 2026
mas-website
Public
The OWASP Mobile Application Security Project website is the central hub for industry-leading standards, guides, and resources—helping developers and security p…
TypeScript
•
Creative Commons Attribution Share Alike 4.0 International
•5•5•3•5•Updated Feb 5, 2026Feb 5, 2026
www-project-smart-contract-top-10
Public
OWASP Smart Contract Top 10
HTML
•
Other
•23•66•0•0•Updated Feb 5, 2026Feb 5, 2026
www-chapter-italy
Public
OWASP Foundation Web Respository
HTML
•4•10•0•0•Updated Feb 5, 2026Feb 5, 2026
DevGuide
Public
The OWASP Developer Guide
owasp owasp-developer-guide
Creative Commons Attribution Share Alike 4.0 International
•403•2.1k•9•1•Updated Feb 5, 2026Feb 5, 2026