Skip to content
@OWASP

OWASP

The OWASP Foundation

Popular repositories Loading

  1. CheatSheetSeries CheatSheetSeries Public

    The OWASP Cheat Sheet Series was created to provide a concise collection of high value information on specific application security topics.

    Python 29.9k 4.2k

  2. mastg mastg Public

    The OWASP Mobile Application Security Testing Guide (MASTG) is a comprehensive manual for mobile app security testing and reverse engineering. It describes technical processes for verifying the OWA…

    Python 12.4k 2.5k

  3. wstg wstg Public

    The Web Security Testing Guide is a comprehensive Open Source guide to testing the security of web applications and web services.

    Dockerfile 8.1k 1.5k

  4. Go-SCP Go-SCP Public

    Golang Secure Coding Practices guide

    Go 5.2k 385

  5. Top10 Top10 Public

    Official OWASP Top 10 Document Repository

    HTML 4.7k 902

  6. Nettacker Nettacker Public

    Automated Penetration Testing Framework - Open-Source Vulnerability Scanner - Vulnerability Management

    Python 4.3k 887

Repositories

Showing 10 of 1298 repositories
  • Nest Public

    Your gateway to OWASP. Discover, engage, and help shape the future!

    OWASP/Nest’s past year of commit activity
    Python 97 MIT 105 59 (1 issue needs help) 21 Updated Jul 17, 2025
  • threat-dragon Public

    An open source threat modeling tool from OWASP

    OWASP/threat-dragon’s past year of commit activity
    JavaScript 1,142 Apache-2.0 302 85 (6 issues need help) 2 Updated Jul 17, 2025
  • cornucopia Public

    The source files and tools needed to build the OWASP Cornucopia decks in various languages

    OWASP/cornucopia’s past year of commit activity
    Python 74 29 24 3 Updated Jul 17, 2025
  • mastg Public

    The OWASP Mobile Application Security Testing Guide (MASTG) is a comprehensive manual for mobile app security testing and reverse engineering. It describes technical processes for verifying the OWASP Mobile Security Weakness Enumeration (MASWE) weaknesses, which are in alignment with the OWASP MASVS.

    OWASP/mastg’s past year of commit activity
    Python 12,371 CC-BY-SA-4.0 2,465 307 32 Updated Jul 17, 2025
  • maswe Public

    The Mobile Application Security Weakness Enumeration (MASWE) is a list of common security and privacy weaknesses in mobile apps. It is intended to be used as a reference for developers, security researchers, and security professionals. It acts as the bridge between the OWASP MASVS and the MASTG.

    OWASP/maswe’s past year of commit activity
    0 CC-BY-SA-4.0 2 0 5 Updated Jul 17, 2025
  • www-project-agent-observability-standard Public

    Agent Observability Standard

    OWASP/www-project-agent-observability-standard’s past year of commit activity
    36 Apache-2.0 16 19 1 Updated Jul 17, 2025
  • owasp.github.io Public

    OWASP Foundation main site repository

    OWASP/owasp.github.io’s past year of commit activity
    HTML 595 CC-BY-SA-4.0 287 12 1 Updated Jul 17, 2025
  • wrongsecrets Public

    Vulnerable app with examples showing how to not use secrets

    OWASP/wrongsecrets’s past year of commit activity
    Java 1,336 AGPL-3.0 456 23 (10 issues need help) 11 Updated Jul 17, 2025
  • www-community Public

    OWASP Community Pages are a place where OWASP can accept community contributions for security-related content.

    OWASP/www-community’s past year of commit activity
    HTML 1,237 749 14 (2 issues need help) 5 Updated Jul 17, 2025
  • www-project-hactu8 Public

    OWASP Foundation web repository

    OWASP/www-project-hactu8’s past year of commit activity
    HTML 0 0 0 0 Updated Jul 16, 2025
View all repositories