Skip to content
@OWASP

OWASP

The OWASP Foundation

Popular repositories Loading

  1. CheatSheetSeries CheatSheetSeries Public

    The OWASP Cheat Sheet Series was created to provide a concise collection of high value information on specific application security topics.

    Python 30.6k 4.3k

  2. mastg mastg Public

    The OWASP Mobile Application Security Testing Guide (MASTG) is a comprehensive manual for mobile app security testing and reverse engineering. It describes technical processes for verifying the OWA…

    Python 12.5k 2.5k

  3. wstg wstg Public

    The Web Security Testing Guide is a comprehensive Open Source guide to testing the security of web applications and web services.

    Dockerfile 8.5k 1.5k

  4. Go-SCP Go-SCP Public

    Golang Secure Coding Practices guide

    Go 5.2k 386

  5. Top10 Top10 Public

    Official OWASP Top 10 Document Repository

    HTML 4.8k 936

  6. Nettacker Nettacker Public

    Automated Penetration Testing Framework - Open-Source Vulnerability Scanner - Vulnerability Management

    Python 4.6k 931

Repositories

Showing 10 of 1326 repositories
  • threat-dragon Public

    An open source threat modeling tool from OWASP

    OWASP/threat-dragon’s past year of commit activity
    JavaScript 1,226 Apache-2.0 315 93 (6 issues need help) 3 Updated Nov 2, 2025
  • www-chapter-netherlands Public

    OWASP Foundation Web Respository

    OWASP/www-chapter-netherlands’s past year of commit activity
    HTML 6 5 1 1 Updated Nov 2, 2025
  • Nest Public

    Your gateway to OWASP. Discover, engage, and help shape the future!

    OWASP/Nest’s past year of commit activity
    Python 212 MIT 254 85 (1 issue needs help) 35 Updated Nov 2, 2025
  • mastg Public

    The OWASP Mobile Application Security Testing Guide (MASTG) is a comprehensive manual for mobile app security testing and reverse engineering. It describes technical processes for verifying the OWASP Mobile Security Weakness Enumeration (MASWE) weaknesses, which are in alignment with the OWASP MASVS.

    OWASP/mastg’s past year of commit activity
    Python 12,531 CC-BY-SA-4.0 2,539 312 41 Updated Nov 2, 2025
  • www-chapter-tirunelveli Public

    OWASP Foundation Web Respository

    OWASP/www-chapter-tirunelveli’s past year of commit activity
    HTML 2 3 0 1 Updated Nov 2, 2025
  • maswe Public

    The Mobile Application Security Weakness Enumeration (MASWE) is a list of common security and privacy weaknesses in mobile apps. It is intended to be used as a reference for developers, security researchers, and security professionals. It acts as the bridge between the OWASP MASVS and the MASTG.

    OWASP/maswe’s past year of commit activity
    11 CC-BY-SA-4.0 6 1 9 Updated Nov 2, 2025
  • www-project-mcp-top-10 Public

    OWASP Foundation web repository

    OWASP/www-project-mcp-top-10’s past year of commit activity
    HTML 13 3 1 1 Updated Nov 2, 2025
  • crAPI Public

    completely ridiculous API (crAPI)

    OWASP/crAPI’s past year of commit activity
    Java 1,360 Apache-2.0 474 28 (1 issue needs help) 15 Updated Nov 2, 2025
  • www-project-eks-goat Public

    OWASP EKS Goat is a deliberately vulnerable EKS cluster environment to explore AWS cloud-native security through hands-on attack and defense labs with walkthrough.

    OWASP/www-project-eks-goat’s past year of commit activity
    Shell 33 GPL-3.0 29 0 1 Updated Nov 2, 2025
  • www-project-wafcontrol Public

    OWASP Foundation web repository

    OWASP/www-project-wafcontrol’s past year of commit activity
    HTML 2 0 0 0 Updated Nov 2, 2025
View all repositories