Awesome Open Source
Search
Programming Languages
Languages
All Categories
Categories
About
Search results for owasp
owasp
x
612 search results found
Safehtml
⭐
312
Safe HTML for Go
Secure Coding Handbook
⭐
307
Web Application Secure Coding Handbook resource.
Ctf Literature
⭐
301
Collection of free books, papers and articles related to CTF challenges.
Specification
⭐
300
CycloneDX is a full-stack Bill of Materials (BOM) standard that provides advanced supply chain capabilities for cyber risk reduction. SBOM, SaaSBOM, HBOM, ML-BOM, OBOM, MBOM, VDR, and VEX
Esapi Java
⭐
298
Rescope
⭐
298
A scope generation tool for Burp Suite & ZAP
Awesome Java Security
⭐
291
Awesome Java Security Resources 🕶☕🔐
Security Champions Playbook
⭐
287
Security Champions Playbook v 2.1
Generic University
⭐
285
Vulnerable API
Action Baseline
⭐
280
A GitHub Action for running the ZAP Baseline scan
Gapps
⭐
279
Security compliance platform - SOC2, CMMC, ASVS, ISO27001, HIPAA, NIST CSF, NIST 800-53, CSC CIS 18, PCI DSS, SSF tracking. https://gapps.darkbanner.com
Nosqlinjection_wordlists
⭐
276
This repository contains payload to test NoSQL Injections
Dvws
⭐
270
OWSAP Damn Vulnerable Web Sockets (DVWS) is a vulnerable web application which works on web sockets for client-server communication.
Phoenix Ecto Encryption Example
⭐
267
🔐 A detailed example for how to encrypt data in an Elixir (Phoenix v1.7) App before inserting into a database using Ecto Types
Appsensor
⭐
263
A toolkit for building self-defending applications through real-time event detection and response
Securetea Project
⭐
260
The OWASP SecureTea Project provides a one-stop security solution for various devices (personal computers / servers / IoT devices)
Sbt Dependency Check
⭐
259
SBT Plugin for OWASP DependencyCheck. Monitor your dependencies and report if there are any publicly known vulnerabilities (e.g. CVEs). 🌈
Fdsploit
⭐
257
File Inclusion & Directory Traversal fuzzing, enumeration & exploitation tool.
Insider
⭐
255
Static Application Security Testing (SAST) engine focused on covering the OWASP Top 10, to make source code analysis to find vulnerabilities right in the source code, focused on a agile and easy to implement software inside your DevOps pipeline. Support the following technologies: Java (Maven and Android), Kotlin (Android), Swift (iOS), .NET Full Framework, C#, and Javascript (Node.js).
Awesome Cyber Security
⭐
255
[Draft]Awesome Cyber Security Resource Collection. Currently contains 8000+ open source repositories, and not very well classified. For each repository, extra info included: star count, commit count, last update time. This is the DRAFT version.
Apicheck
⭐
254
The DevSecOps toolset for REST APIs
Owaspheaders.core
⭐
253
A .NET Core middleware for injecting the Owasp recommended HTTP Headers for increased security
Zap Hud
⭐
252
The ZAP Heads Up Display (HUD)
Cyclonedx Maven Plugin
⭐
250
Creates CycloneDX Software Bill of Materials (SBOM) from Maven projects
Security_resources
⭐
246
Collection of online security resources
Action Full Scan
⭐
237
A GitHub Action for running the ZAP Full scan
Vulnerableapp
⭐
236
OWASP VulnerableApp Project: For Security Enthusiasts by Security Enthusiasts.
Myblog
⭐
236
记录和分享学习的旅程!
Multi Juicer
⭐
235
Host and manage multiple Juice Shop instances for security trainings and Capture The Flags
Ftw
⭐
229
Framework for Testing WAFs (FTW!)
Javasecurity
⭐
224
Java web and command line applications demonstrating various security topics
Iotgoat
⭐
219
IoTGoat is a deliberately insecure firmware created to educate software developers and security professionals with testing commonly found vulnerabilities in IoT devices.
Payloadsallthethings
⭐
211
Vuln Web Apps
⭐
209
A curated list of vulnerable web applications.
Pwning Juice Shop
⭐
207
Antora/Asciidoc content for Bjoern Kimminich's free eBook "Pwning OWASP Juice Shop"
Cyclonedx Cli
⭐
206
CycloneDX CLI tool for SBOM analysis, merging, diffs and format conversions.
Coraza Caddy
⭐
206
OWASP Coraza middleware for Caddy. It provides Web Application Firewall capabilities
Aws Firewall Factory
⭐
205
Easily improve the security of your web applications with aws firewall factory. Protect your valuable assets with seamless WAF deployment, updates, and staging, all efficiently managed centrally with Firewall Manager.
Cis Ubuntu 20.04 Ansible
⭐
202
Ansible Role to Automate CIS v1.1.0 Ubuntu Linux 18.04 LTS, 20.04 LTS Remediation
Zap Core Help
⭐
200
The help files for the ZAP core
Phpsec
⭐
198
OWASP PHP Security Project - THIS PROJECT IS INACTIVE AND MAY CONTAIN SECURITY FLAWS
Handbook
⭐
196
A living document for penetration testing and offensive security.
Vulnerable Web Application
⭐
194
OWASP Vulnerable Web Application Project https://github.com/hummingbirdscyber
Owaspbwa
⭐
193
OWASP Broken Web Applications Project
Webgoat.net
⭐
190
OWASP WebGoat.NET
Flask Bootstrap
⭐
189
A Flask app template with integrated SQLAlchemy, authentication, and Bootstrap frontend
Pentestlab
⭐
186
Fast and easy script to manage pentesting training apps
Phpvuln
⭐
185
🕸️ Audit tool to find common vulnerabilities in PHP source code
Nightingale
⭐
183
It's a Docker Environment for Pentesting which having all the required tool for VAPT.
Cyclonedx Python
⭐
181
CycloneDX Software Bill of Materials (SBOM) generator for Python projects and environments
Dast Operator
⭐
178
Dynamic Application and API Security Testing
Semgrep Rules Android Security
⭐
173
A collection of Semgrep rules derived from the OWASP MASTG specifically for Android applications.
Octopuswaf
⭐
170
OctopusWAF is a WAF( Web application firewall) with high performance, made in C language and use libevent.
Owasp Asvs Checklist
⭐
169
OWASP ASVS checklist for audits
Csrf Protector Php
⭐
168
CSRF Protector library: standalone library for CSRF mitigation
Zap Api Python
⭐
168
ZAP Python API
Adapt
⭐
168
ADAPT is a tool that performs automated Penetration Testing for WebApps.
Securityrat
⭐
165
OWASP SecurityRAT (version 1.x) - Tool for handling security requirements in development
Ols Docker Env
⭐
163
OpenLiteSpeed Docker Environment
Awesome Cybersec
⭐
162
A collection of awesome platforms, blogs, documents, books, resources and cool stuff about security
Riskassessmentframework
⭐
161
The Secure Coding Framework
Lets Be Bad Guys
⭐
159
A deliberately-vulnerable website and exercises for teaching about the OWASP Top 10
Serverless Goat
⭐
158
OWASP ServerlessGoat: a serverless application demonstrating common serverless security flaws
Awesome Pentest
⭐
156
Awesome Penetration Testing A collection of awesome penetration testing resources
Owasp Csrfguard
⭐
156
OWASP CSRFGuard 3.1.0
Go Agent
⭐
154
Sqreen's Application Security Management for the Go language
Owasp Password Strength Test
⭐
152
OWASP Password Strength Test for Node.js
D4n155
⭐
147
OWASP D4N155 - Intelligent and dynamic wordlist using OSINT
Cyclonedx Dotnet
⭐
147
Creates CycloneDX Software Bill of Materials (SBOM) from .NET Projects
Iotgoat
⭐
144
IoTGoat is a deliberately insecure firmware based on OpenWrt.
Js Scp
⭐
142
JavaScript Secure Coding Practices guide
Asvs
⭐
141
A simple web app that helps developers understand the ASVS requirements.
Owasp Mth3l3m3nt Framework
⭐
139
OWASP Mth3l3m3nt Framework is a penetration testing aiding tool and exploitation framework. It fosters a principle of attack the web using the web as well as pentest on the go through its responsive interface.
Passfault
⭐
139
OWASP Passfault evaluates passwords and enforces password policy in a completely different way.
Vulnerable Soap Service
⭐
138
Erlik - Vulnerable Soap Service
Web_hacking
⭐
135
Bug Bounty Tricks and useful payloads and bypasses for Web Application Security.
Owasp Cloud Security
⭐
135
OWASP Cloud Security - Enabling conversations through threat and control stories
Deepviolet
⭐
135
Tool for introspection of SSL\TLS sessions
Cazador_unr
⭐
130
Hacking tools
Zap Cli
⭐
130
A simple tool for interacting with OWASP ZAP from the commandline.
Backup Finder
⭐
129
A burp suite extension that reviews backup, old, temporary and unreferenced files on web server for sensitive information (OWASP WSTG-CONF-04, OTG-CONFIG-004)
Humble
⭐
128
A humble, and fast!, security-oriented HTTP headers analyzer.
Owasp Orizon
⭐
127
Owasp Orizon is a source code static analyzer tool designed to spot security issues in Java applications.
Cyclonedx Gradle Plugin
⭐
127
Creates CycloneDX Software Bill of Materials (SBOM) from Gradle projects
Hybridtestframework
⭐
126
End to End testing of Web, API, Cloud, Events and Security
Dependency Check Plugin
⭐
124
Jenkins plugin for OWASP Dependency-Check. Inspects project components for known vulnerabilities (e.g. CVEs).
Vulnplanet
⭐
123
Vulnerable code snippets with fixes for Web2, Web3, API, iOS, Android and Infrastructure-as-Code (IaC)
Owasp Workshop
⭐
122
owasp-workshop: Orchetraing containers with Kubernetes
Securityessentials
⭐
122
Raise your baseline in security by using this as your template instead of default Mvc project. Keep your app secure by continuously applying Security rules
Serverless Top 10 Project
⭐
122
OWASP Serverless Top 10
Vulnerable Flask App
⭐
121
Erlik 2 - Vulnerable-Flask-App
Artlas
⭐
119
Apache Real Time Logs Analyzer System
Passwordgenerator
⭐
118
A library which generates random passwords with different settings to meet the OWASP requirements
Bwasp
⭐
116
BoB Web Application Security Project
Auditdroid
⭐
115
AduitDroid
Iot Security Verification Standard Isvs
⭐
114
OWASP IoT Security Verification Standard (ISVS)
Cyclonedx Gomod
⭐
113
Creates CycloneDX Software Bill of Materials (SBOM) from Go modules
Www Project Secure Headers
⭐
113
The OWASP Secure Headers Project
Cve 2022 23808
⭐
110
phpMyAdmin XSS
Owasp Summit 2017
⭐
110
Content for OWASP Summit 2017 site
101-200 of 612 search results
< Previous
Next >
Privacy
|
About
|
Terms
|
Follow Us On Twitter
Copyright 2018-2024 Awesome Open Source. All rights reserved.