Skip to content
@OWASP

OWASP

The OWASP Foundation

Popular repositories Loading

  1. CheatSheetSeries CheatSheetSeries Public

    The OWASP Cheat Sheet Series was created to provide a concise collection of high value information on specific application security topics.

    Python 30.8k 4.3k

  2. mastg mastg Public

    The OWASP Mobile Application Security Testing Guide (MASTG) is a comprehensive manual for mobile app security testing and reverse engineering. It describes technical processes for verifying the OWA…

    Shell 12.6k 2.6k

  3. wstg wstg Public

    The Web Security Testing Guide is a comprehensive Open Source guide to testing the security of web applications and web services.

    Dockerfile 8.6k 1.5k

  4. Go-SCP Go-SCP Public

    Golang Secure Coding Practices guide

    Go 5.2k 386

  5. Top10 Top10 Public

    Official OWASP Top 10 Document Repository

    HTML 5k 966

  6. Nettacker Nettacker Public

    Automated Penetration Testing Framework - Open-Source Vulnerability Scanner - Vulnerability Management

    Python 4.6k 944

Repositories

Showing 10 of 1333 repositories
  • mas-website Public

    The OWASP Mobile Application Security Project website is the central hub for industry-leading standards, guides, and resources—helping developers and security professionals build, test, and secure mobile applications.

    OWASP/mas-website’s past year of commit activity
    Dockerfile 4 CC-BY-SA-4.0 4 6 5 Updated Dec 7, 2025
  • mastg Public

    The OWASP Mobile Application Security Testing Guide (MASTG) is a comprehensive manual for mobile app security testing and reverse engineering. It describes technical processes for verifying the OWASP Mobile Security Weakness Enumeration (MASWE) weaknesses, which are in alignment with the OWASP MASVS.

    OWASP/mastg’s past year of commit activity
    Shell 12,586 CC-BY-SA-4.0 2,581 304 53 Updated Dec 7, 2025
  • www-chapter-kansai Public

    OWASP Foundation Web Respository

    OWASP/www-chapter-kansai’s past year of commit activity
    HTML 4 1 0 2 Updated Dec 7, 2025
  • railsgoat Public

    A vulnerable version of Rails that follows the OWASP Top 10

    OWASP/railsgoat’s past year of commit activity
    HTML 902 MIT 772 23 4 Updated Dec 7, 2025
  • www-project-noir Public

    Attack surface detector that identifies endpoints by static analysis

    OWASP/www-project-noir’s past year of commit activity
    HTML 5 3 0 0 Updated Dec 7, 2025
  • www-chapter-vancouver Public

    OWASP Foundation Web Respository

    OWASP/www-chapter-vancouver’s past year of commit activity
    Shell 1 7 0 2 Updated Dec 7, 2025
  • owasp.github.io Public

    OWASP Foundation main site repository

    OWASP/owasp.github.io’s past year of commit activity
    HTML 615 CC-BY-SA-4.0 299 3 1 Updated Dec 7, 2025
  • www-project-secure-headers Public

    The OWASP Secure Headers Project

    OWASP/www-project-secure-headers’s past year of commit activity
    Python 177 Apache-2.0 44 2 0 Updated Dec 7, 2025
  • Nest Public

    Your gateway to OWASP. Discover, engage, and help shape the future!

    OWASP/Nest’s past year of commit activity
    Python 250 MIT 322 115 (8 issues need help) 34 Updated Dec 6, 2025
  • threat-dragon Public

    An open source threat modeling tool from OWASP

    OWASP/threat-dragon’s past year of commit activity
    JavaScript 1,257 Apache-2.0 321 93 (6 issues need help) 6 Updated Dec 6, 2025
View all repositories