Skip to content
@OWASP

OWASP

The OWASP Foundation

Popular repositories Loading

  1. CheatSheetSeries CheatSheetSeries Public

    The OWASP Cheat Sheet Series was created to provide a concise collection of high value information on specific application security topics.

    Python 31.6k 4.4k

  2. mastg mastg Public

    The OWASP Mobile Application Security Testing Guide (MASTG) is a comprehensive manual for mobile app security testing and reverse engineering. It describes technical processes for verifying the OWA…

    Python 12.8k 2.7k

  3. wstg wstg Public

    The Web Security Testing Guide is a comprehensive Open Source guide to testing the security of web applications and web services.

    9k 1.6k

  4. Top10 Top10 Public

    Official OWASP Top 10 Document Repository

    HTML 5.4k 1k

  5. Go-SCP Go-SCP Public

    Golang Secure Coding Practices guide

    Go 5.3k 401

  6. Nettacker Nettacker Public

    Automated Penetration Testing Framework - Open-Source Vulnerability Scanner - Vulnerability Management

    Python 4.9k 1.1k

Repositories

Showing 10 of 1354 repositories
  • AISVS Public

    The AI Security Verification Standard (AISVS) focuses on providing developers, architects, and security professionals with a structured checklist to verify the security of AI-driven applications.

    OWASP/AISVS’s past year of commit activity
    89 CC-BY-SA-4.0 44 6 8 Updated Mar 22, 2026
  • cornucopia Public

    The source files and tools needed to build the OWASP Cornucopia decks in various languages

    OWASP/cornucopia’s past year of commit activity
    Python 119 CC-BY-SA-4.0 86 49 (8 issues need help) 32 Updated Mar 22, 2026
  • mastg Public

    The OWASP Mobile Application Security Testing Guide (MASTG) is a comprehensive manual for mobile app security testing and reverse engineering. It describes technical processes for verifying the OWASP Mobile Security Weakness Enumeration (MASWE) weaknesses, which are in alignment with the OWASP MASVS.

    OWASP/mastg’s past year of commit activity
    Python 12,791 CC-BY-SA-4.0 2,699 190 59 Updated Mar 22, 2026
  • www-project-secopstm Public

    OWASP Foundation web repository

    OWASP/www-project-secopstm’s past year of commit activity
    HTML 0 Apache-2.0 1 0 0 Updated Mar 22, 2026
  • wrongsecrets Public

    Vulnerable app with examples showing how to not use secrets

    OWASP/wrongsecrets’s past year of commit activity
    Java 1,407 AGPL-3.0 544 26 (9 issues need help) 6 Updated Mar 22, 2026
  • wrongsecrets-ctf-party Public Forked from juice-shop/multi-juicer

    Run Capture the Flags and Security Trainings with OWASP WrongSecrets

    OWASP/wrongsecrets-ctf-party’s past year of commit activity
    JavaScript 55 Apache-2.0 176 5 (4 issues need help) 9 Updated Mar 22, 2026
  • owasp.github.io Public

    OWASP Foundation main site repository

    OWASP/owasp.github.io’s past year of commit activity
    HTML 638 CC-BY-SA-4.0 312 4 1 Updated Mar 22, 2026
  • www-project-agentic-skills-top-10 Public

    OWASP Foundation web repository

    OWASP/www-project-agentic-skills-top-10’s past year of commit activity
    Shell 0 0 0 0 Updated Mar 22, 2026
  • threat-dragon Public

    An open source threat modeling tool from OWASP

    OWASP/threat-dragon’s past year of commit activity
    JavaScript 1,356 Apache-2.0 357 91 (7 issues need help) 6 Updated Mar 22, 2026
  • Nest Public

    Your gateway to OWASP. Discover, engage, and help shape the future!

    OWASP/Nest’s past year of commit activity
    Python 404 MIT 595 258 (1 issue needs help) 59 Updated Mar 22, 2026
View all repositories