BlazingWind/OWASP-ASVS-4.0-testing-guide external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

BlazingWind/OWASP-ASVS-4.0-testing-guide

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/BlazingWind/OWASP-ASVS-4.0-testing-guide)

Close

BlazingWind / OWASP-ASVS-4.0-testing-guideView on GitHubMore

• External links
• Readme badge

☆125Nov 8, 2023Updated 2 years ago

Alternatives and similar repositories for OWASP-ASVS-4.0-testing-guide

Users that are interested in OWASP-ASVS-4.0-testing-guide are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• YaleUniversity / ZAP_ASVS_Checks

  View on GitHub
  ZAP scripts to implement ASVS L1 checking
  ☆17Apr 28, 2022Updated 4 years ago
• nicoSWD / asvs-checklist

  View on GitHub
  OWASP Application Security Verification Standard 4.0 Checklist
  ☆33Apr 15, 2019Updated 7 years ago
• Santandersecurityresearch / asvs

  View on GitHub
  A simple web app that helps developers understand the ASVS requirements. Now supporting ASVS 5.0
  ☆164Nov 25, 2025Updated 5 months ago
• spoofzu / jvmxray

  View on GitHub
  Externalize Java application access to protected resources as log messages.
  ☆44Apr 2, 2026Updated last month
• semgrep-old / rules-owasp-asvs

  View on GitHub
  Semgrep rules corresponding to the OWASP ASVS standard
  ☆27Nov 2, 2020Updated 5 years ago
• Wordpress hosting with auto-scaling - Free Trial Offer • Ad
  Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
• mllamazares / STRIDE-vs-ASVS

  View on GitHub
  🖇️ equivalence table between OWASP ASVS standard and STRIDE threat modeling methodology.
  ☆76Aug 22, 2024Updated last year
• we45 / ZAP-Mini-Workshop

  View on GitHub
  Interactive IPython Notebook to demonstrate OWASP ZAP's API and Scripting Functions - OWASP ZAP 2.8.0
  ☆41Dec 8, 2022Updated 3 years ago
• cydea / threat-personas

  View on GitHub
  We borrow the concept of 'personas' from UX/service design and apply it to threat actors to improve understanding between security, techn…
  ☆11Jun 17, 2020Updated 5 years ago
• Whitespots-OU / security-requirements-generator

  View on GitHub
  A small tool to help developers understand a huge set of security requirements from appsec teams
  ☆47Sep 2, 2022Updated 3 years ago
• OWASP / threat-model-cookbook

  View on GitHub
  This project is about creating and publishing threat model examples.
  ☆433Nov 10, 2021Updated 4 years ago
• P3tra-WP / Jupyter-Threat

  View on GitHub
  ☆14Dec 3, 2022Updated 3 years ago
• Santandersecurityresearch / corsair_scan

  View on GitHub
  Corsair_scan is a security tool to test Cross-Origin Resource Sharing (CORS).
  ☆123Apr 14, 2023Updated 3 years ago
• mario-platt / ASVS-Agile-Delivery-Guide

  View on GitHub
  ☆35May 13, 2021Updated 4 years ago
• we45 / RoboZap

  View on GitHub
  ☆32May 22, 2023Updated 2 years ago
• AI Agents on DigitalOcean Gradient AI Platform • Ad
  Build production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
• we45 / Gauge-OWASP-ZAP

  View on GitHub
  Example of using Gauge and OWASP ZAP for test automation
  ☆11Jan 9, 2020Updated 6 years ago
• h0rv4th / c2matrix-analyzer

  View on GitHub
  Basic c2-matrix analysis enviroment using Suricata + Wazuh + Elastic stack
  ☆13Apr 18, 2020Updated 6 years ago
• OWASP / ASVS

  View on GitHub
  Application Security Verification Standard
  ☆3,412Mar 17, 2026Updated last month
• OpenSecuritySummit / project-ASVS-User-Stories

  View on GitHub
  ☆20Jan 18, 2022Updated 4 years ago
• OWASP / threat-modeling-playbook

  View on GitHub
  ☆36Mar 8, 2022Updated 4 years ago
• threatspec / threatspec

  View on GitHub
  threatspec - continuous threat modeling, through code
  ☆383Dec 30, 2020Updated 5 years ago
• OWASP / www-project-apicheck

  View on GitHub
  OWASP Foundation Web Respository
  ☆11May 22, 2023Updated 2 years ago
• shenril / owasp-asvs-checklist

  View on GitHub
  OWASP ASVS checklist for audits
  ☆216Jan 5, 2024Updated 2 years ago
• secmerc / materialize-threats

  View on GitHub
  ☆69Jul 18, 2025Updated 9 months ago
• Virtual machines for every use case on DigitalOcean • Ad
  Get dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
• RandoriDev / test-saml-idp

  View on GitHub
  ☆30Jul 29, 2021Updated 4 years ago
• javixeneize / zasca

  View on GitHub
  Yet Another SCA tool
  ☆13Nov 10, 2022Updated 3 years ago
• slyd0g / SharpCryptUnprotectData

  View on GitHub
  ☆15Feb 9, 2022Updated 4 years ago
• Autodesk / continuous-threat-modeling

  View on GitHub
  A Continuous Threat Modeling methodology
  ☆327Jun 24, 2022Updated 3 years ago
• JoasASantos / Trevorfuscation

  View on GitHub
  A tool that automates the trevorc2 powershell agent obfuscation process with the pyfuscation tool
  ☆15Jun 28, 2023Updated 2 years ago
• Contrast-Security-OSS / vulnerable-spring-boot-application

  View on GitHub
  ☆17Apr 16, 2026Updated 2 weeks ago
• nccgroup / s3_objects_check

  View on GitHub
  Whitebox evaluation of effective S3 object permissions, to identify publicly accessible files.
  ☆78Mar 4, 2022Updated 4 years ago
• morganc3 / KOAuth

  View on GitHub
  OAuth 2.0 Dynamic Security Scanner
  ☆33Feb 27, 2021Updated 5 years ago
• righettod / injection-cheat-sheets

  View on GitHub
  Provide some tips to handle Injection into application code (OWASP TOP 10 - A1).
  ☆10Nov 11, 2020Updated 5 years ago
• Deploy to Railway using AI coding agents - Free Credits Offer • Ad
  Use Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
• kerberosmansour / InfoSecOpenAIExamples

  View on GitHub
  InfoSec OpenAI Examples
  ☆19Nov 26, 2023Updated 2 years ago
• geoffrey-hill-tutamantic / rapid-threat-model-prototyping-docs

  View on GitHub
  This repository stores content that can be used to design a Rapid Threat Model Prototyping process for a software development group.
  ☆165Mar 14, 2023Updated 3 years ago
• blackn0te / Apache-HTTP-Server-2.4.49-2.4.50-Path-Traversal-Remote-Code-Execution

  View on GitHub
  Apache HTTP-Server 2.4.49-2.4.50 Path Traversal & Remote Code Execution PoC (CVE-2021-41773 & CVE-2021-42013)
  ☆13Aug 22, 2025Updated 8 months ago
• RossGeerlings / webstor

  View on GitHub
  WebStor efficiently enumerates all websites across your organization’s networks and those in your DNS records - including cloud-hosted se…
  ☆157Mar 31, 2024Updated 2 years ago
• EspressoCake / MITRE_ATTACK_CLI

  View on GitHub
  CLI Search for Security Operators of MITRE ATT&CK URLs
  ☆17Jan 5, 2023Updated 3 years ago
• spyd3r / owasp-asvs-github

  View on GitHub
  ☆18Apr 21, 2020Updated 6 years ago
• DigeeX / raider

  View on GitHub
  DEPRECATED, please use the new repository from OWASP: https://github.com/OWASP/raider
  ☆139Sep 14, 2021Updated 4 years ago