OWASP

Repositories

• cwe-sdk-javascript

  A Common Weakness Enumeration (CWE) Node.js SDK compliant with MITRE / CAPEC

  owasp vulnerabilities cve mitre cwe
  JavaScript Apache-2.0 1 5 1 (1 issue needs help) 1 Updated Nov 16, 2020

• NodeGoat

  The OWASP NodeGoat project provides an environment to learn how OWASP Top 10 security risks apply to web applications developed using Node.js and how to effectively address them.

  nodejs javascript heroku docker vulnerabilities owasp-zap owasp-top-ten
  HTML Apache-2.0 711 1,309 26 (4 issues need help) 6 Updated Nov 16, 2020

• Amass

  In-depth Attack Surface Mapping and Asset Discovery

  go dns osint owasp subdomain enumeration recon
  Go Apache-2.0 772 4,350 53 (1 issue needs help) 5 Updated Nov 16, 2020

• www-project-vulnerableapp

  OWASP Foundation Web Respository for VulnerableApp project. Project's codebase Repository: https://github.com/SasanLabs/VulnerableApp
  Ruby 1 3 0 0 Updated Nov 16, 2020

• owasp.github.io

  OWASP Foundation main site repository
  HTML CC-BY-SA-4.0 112 113 25 2 Updated Nov 16, 2020

• wstg

  The Web Security Testing Guide is a comprehensive Open Source guide to testing the security of web applications and web services.

  security guide best-practices owasp penetration-testing application-security pentesting
  Shell CC-BY-SA-4.0 478 1,762 42 (25 issues need help) 3 Updated Nov 16, 2020

• www-chapter-ankara

  OWASP Foundation Web Respository
  HTML 2 0 0 2 Updated Nov 16, 2020

• www-chapter-florianopolis

  OWASP Foundation Web Respository
  Ruby 0 0 0 0 Updated Nov 16, 2020

• CheatSheetSeries

  The OWASP Cheat Sheet Series was created to provide a concise collection of high value information on specific application security topics.

  security code best-practices owasp application-security appsec cheatsheets
  Python 2,071 14,101 31 5 Updated Nov 16, 2020

• www-chapter-belgium

  OWASP Foundation Web Respository
  HTML 5 0 0 0 Updated Nov 16, 2020

• QRLJacking

  QRLJacking or Quick Response Code Login Jacking is a simple-but-nasty attack vector affecting all the applications that relays on “Login with QR code” feature as a secure way to login into accounts which aims for hijacking users session by attackers.
  Python GPL-3.0 427 709 6 1 Updated Nov 16, 2020

• www-project-sidekek

  OWASP Foundation Web Respository
  HTML 0 0 0 0 Updated Nov 16, 2020

• threat-dragon-desktop

  An installable desktop variant of OWASP Threat Dragon

  owasp threat-modeling sdlc threat-dragon owasp-threat-dragon
  CSS Apache-2.0 3 18 10 (2 issues need help) 0 Updated Nov 16, 2020

• www-staff
  HTML 8 8 5 0 Updated Nov 16, 2020

• owasp-mstg

  The Mobile Security Testing Guide (MSTG) is a comprehensive manual for mobile app security development, testing and reverse engineering.

  android ios static-analysis reverse-engineering hacking mobile-app android-application
  Shell CC-BY-SA-4.0 1,397 6,623 104 (2 issues need help) 5 Updated Nov 15, 2020

• samm
  JavaScript 104 299 55 10 Updated Nov 15, 2020

• www-project-web-security-testing-guide

  The Web Security Testing Guide (WSTG) Project produces the premier cybersecurity testing resource for web application developers and security professionals.

  owasp owasp-website wstg
  HTML 34 92 0 0 Updated Nov 15, 2020

• www-project-top-10-privacy-risks

  OWASP Foundation Web Respository
  HTML 2 1 0 1 Updated Nov 14, 2020

• www-project-vulnerable-web-applications-directory

  The OWASP Vulnerable Web Applications Directory (VWAD) Project - OWASP Web Site

  owasp appsec webappsec vulnerable-web-app vulnerable-web-application vulnerable-applications
  HTML 8 10 0 0 Updated Nov 13, 2020

• OWASP-VWAD

  The OWASP Vulnerable Web Applications Directory project (VWAD) is a comprehensive and well maintained registry of all known vulnerable web applications currently available.

  owasp vulnerable appsec vulnerable-web-app vulnerable-web-application
  Apache-2.0 118 434 1 0 Updated Nov 14, 2020

• O-Saft

  O-Saft - OWASP SSL advanced forensic tool

  tls ssl certificate perl ciphers
  Perl GPL-2.0 78 290 5 2 Updated Nov 13, 2020

• www-project-antisamy
  HTML 0 0 0 0 Updated Nov 13, 2020

• www-chapter-gothenburg

  OWASP Foundation Web Respository
  HTML 3 2 0 0 Updated Nov 13, 2020

• www-chapter-sendai

  OWASP Foundation Web Respository
  HTML 2 0 0 0 Updated Nov 13, 2020

• www-board
  HTML 3 0 0 0 Updated Nov 13, 2020

• www-projectchapter-example
  Ruby 20 9 0 1 Updated Nov 13, 2020

• owasp-masvs

  The Mobile Application Security Verification Standard (MASVS) is a standard for mobile app security.

  pdf security mobile gitbook german japanese verification
  TeX CC-BY-SA-4.0 268 918 18 1 Updated Nov 13, 2020

• Python-Honeypot

  OWASP Honeypot, Automated Deception Framework.

  security honeypot owasp cybersecurity infosec deception honeynet
  Python Apache-2.0 50 106 0 0 Updated Nov 13, 2020

• SSO_Project

  OWASP Single Sign-On allows a secure-by-default self-hosted SSO experience, including phishing-proof two-factor authentication, using state-of-the-art security mechanisms.
  JavaScript GPL-3.0 6 18 9 (2 issues need help) 0 Updated Nov 13, 2020

• www-chapter-aligarh

  OWASP Foundation Web Respository
  HTML 1 0 0 0 Updated Nov 12, 2020