The OWASP Cheat Sheet Series was created to provide a concise collection of high value information on specific application security topics.
-
Updated
Mar 4, 2023 - Python
#
appsec
Here are 259 public repositories matching this topic...
The OWASP ZAP core project
-
Updated
Mar 3, 2023 - Java
Web path scanner
python
security
scanner
hacking
wordlist
enumeration
penetration-testing
bug-bounty
fuzzing
infosec
pentesting
bugbounty
fuzzer
brute
appsec
hacking-tool
dirsearch
pentest-tool
redteam
red-teaming
-
Updated
Feb 21, 2023 - Python
OWASP Juice Shop: Probably the most modern and sophisticated insecure web application
javascript
security
hacking
owasp
application-security
pentesting
ctf
vulnerable
appsec
hacktoberfest
owasp-top-10
owasp-top-ten
24pullrequests
vulnapp
-
Updated
Mar 6, 2023 - TypeScript
A list of web application security
security
scanner
hacking
owasp
penetration-testing
vulnerability
web-security
pentesting
vulnerabilities
appsec
metasploit
web-hacking
hacking-tools
-
Updated
Sep 29, 2022
Next generation web scanner
ruby
security
web
scanner
hacking
owasp
penetration-testing
application-security
pentesting
recon
pentest
kali-linux
appsec
network-security
web-hacking
security-tools
penetration-test
hacking-tools
pentesting-tools
penetration-testing-tools
-
Updated
Oct 7, 2022 - Ruby
w3af: web application attack and audit framework, the open source web vulnerability scanner.
-
Updated
Feb 22, 2023 - Python
Open Source Vulnerability Management Platform
security
devops
security-audit
collaboration
orchestration
cybersecurity
nmap
penetration-testing
vulnerability
infosec
pentesting
cve
nessus
appsec
vulnerability-management
vulnerability-scanners
burpsuite
security-automation
devsecops
continuous-scanning
-
Updated
Feb 16, 2023 - Python
Git All the Payloads! A collection of web attack payloads.
-
Updated
Apr 22, 2021 - Shell
Complete Practical Study Plan to become a successful cybersecurity engineer based on roles like Pentest, AppSec, Cloud Security, DevSecOps and so on...
cybersecurity
infosec
application-security
pentesting
study-guide
appsec
aws-security
study-plan
security-testing
api-security
azure-security
appsec-tutorials
gcp-security
devsecops-university
cybersecurity-education
study-planner
-
Updated
Feb 22, 2023
DefectDojo is a DevSecOps and vulnerability management tool.
python
kubernetes
security
automation
django
analytics
owasp
vulnerability-databases
appsec
vulnerability-management
hacktoberfest
security-orchestration
security-automation
devsecops
vulnerability-correlation
-
Updated
Mar 4, 2023 - HTML
Dependency-Track is an intelligent Component Analysis platform that allows organizations to identify and reduce risk in the software supply chain.
security
owasp
bom
vulnerabilities
vulndb
appsec
component-analysis
nvd
vulnerability-detection
sca
software-security
security-automation
devsecops
software-composition-analysis
bill-of-materials
ossindex
purl
package-url
sbom
cyclonedx
-
Updated
Mar 5, 2023 - Java
Find security vulnerabilities, compliance issues, and infrastructure misconfigurations early in the development cycle of your infrastructure-as-code with KICS by Checkmarx.
golang
security
iac
infrastructure-as-code
cloudnative
appsec
vulnerability-detection
hacktoberfest
vulnerability-scanners
security-tools
devsecops
open-policy-agent
-
Updated
Mar 3, 2023 - Open Policy Agent
-
Updated
Sep 2, 2022
The parent project for OpenZiti. Here you will find the executables for a fully zero trust, application embedded, programmable network
networking
network
overlay
vpn
mesh
overlay-network
netsec
appsec
hacktoberfest
zero-trust
zerotrust
zero-trust-network
zero-trust-network-access
hacktoberfest2022
ztna
zero-trust-security
zero-trust-cloud
ztaa
ztha
vpn-2
-
Updated
Mar 2, 2023 - Go
OWASP Mutillidae II is a free, open-source, deliberately vulnerable web application providing a target for web-security training. This is an easy-to-use web hacking environment designed for labs, security enthusiasts, classrooms, CTF, and vulnerability assessment tool targets.
training
security
application
web
owasp
cybersecurity
penetration-testing
top
appsec
10
owasp-top-10
-
Updated
Jan 26, 2023 - PHP
A curated list of threat modeling resources (Books, courses - free and paid, videos, tools, tutorials and workshops to practice on ) for learning Threat modeling and initial phases of security review.
awesome
awesome-list
threat-modeling
appsec
devsecops
security-review
practical-devsecops
devsecops-university
-
Updated
Feb 21, 2023 - Dockerfile
vAPI is Vulnerable Adversely Programmed Interface which is Self-Hostable API that mimics OWASP API Top 10 scenarios through Exercises.
api
docker
php
cors
owasp
postman
exercises
bugbounty
appsec
hacktoberfest
vulnerable-application
owasp-top-10
owasp-top-ten
appsec-tutorials
apitop10
hacktoberfest-accepted
-
Updated
Feb 26, 2023 - HTML
Improve this page
Add a description, image, and links to the appsec topic page so that developers can more easily learn about it.
Add this topic to your repo
To associate your repository with the appsec topic, visit your repo's landing page and select "manage topics."