BlazingWind/OWASP-ASVS-4.0-testing-guide external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

BlazingWind/OWASP-ASVS-4.0-testing-guide

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/BlazingWind/OWASP-ASVS-4.0-testing-guide)

Close

BlazingWind / OWASP-ASVS-4.0-testing-guideView on GitHubMore

• External links
• Readme badge

☆125Nov 8, 2023Updated 2 years ago

Alternatives and similar repositories for OWASP-ASVS-4.0-testing-guide

Users that are interested in OWASP-ASVS-4.0-testing-guide are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• YaleUniversity / ZAP_ASVS_Checks

  View on GitHub
  ZAP scripts to implement ASVS L1 checking
  ☆17Apr 28, 2022Updated 3 years ago
• Santandersecurityresearch / asvs

  View on GitHub
  A simple web app that helps developers understand the ASVS requirements. Now supporting ASVS 5.0
  ☆164Nov 25, 2025Updated 4 months ago
• spoofzu / jvmxray

  View on GitHub
  Externalize Java application access to protected resources as log messages.
  ☆43Mar 7, 2026Updated 2 weeks ago
• semgrep-old / rules-owasp-asvs

  View on GitHub
  Semgrep rules corresponding to the OWASP ASVS standard
  ☆27Nov 2, 2020Updated 5 years ago
• mllamazares / STRIDE-vs-ASVS

  View on GitHub
  🖇️ equivalence table between OWASP ASVS standard and STRIDE threat modeling methodology.
  ☆76Aug 22, 2024Updated last year
• NordVPN Threat Protection Pro™ • Ad
  Take your cybersecurity to the next level. Block phishing, malware, trackers, and ads. Lightweight app that works with all browsers.
• we45 / ZAP-Mini-Workshop

  View on GitHub
  Interactive IPython Notebook to demonstrate OWASP ZAP's API and Scripting Functions - OWASP ZAP 2.8.0
  ☆41Dec 8, 2022Updated 3 years ago
• cydea / threat-personas

  View on GitHub
  We borrow the concept of 'personas' from UX/service design and apply it to threat actors to improve understanding between security, techn…
  ☆11Jun 17, 2020Updated 5 years ago
• Whitespots-OU / security-requirements-generator

  View on GitHub
  A small tool to help developers understand a huge set of security requirements from appsec teams
  ☆46Sep 2, 2022Updated 3 years ago
• edgeroute / security-champion-framework

  View on GitHub
  The Security Champion Framework provides both a measuring stick and a roadmap generator for Champion Programs.
  ☆110Jan 16, 2024Updated 2 years ago
• OWASP / threat-model-cookbook

  View on GitHub
  This project is about creating and publishing threat model examples.
  ☆430Nov 10, 2021Updated 4 years ago
• P3tra-WP / Jupyter-Threat

  View on GitHub
  ☆14Dec 3, 2022Updated 3 years ago
• Santandersecurityresearch / corsair_scan

  View on GitHub
  Corsair_scan is a security tool to test Cross-Origin Resource Sharing (CORS).
  ☆123Apr 14, 2023Updated 2 years ago
• mario-platt / ASVS-Agile-Delivery-Guide

  View on GitHub
  ☆35May 13, 2021Updated 4 years ago
• we45 / RoboZap

  View on GitHub
  ☆32May 22, 2023Updated 2 years ago
• GPU virtual machines on DigitalOcean Gradient AI • Ad
  Get to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
• we45 / Gauge-OWASP-ZAP

  View on GitHub
  Example of using Gauge and OWASP ZAP for test automation
  ☆11Jan 9, 2020Updated 6 years ago
• OWASP / ASVS

  View on GitHub
  Application Security Verification Standard
  ☆3,373Mar 17, 2026Updated last week
• h0rv4th / c2matrix-analyzer

  View on GitHub
  Basic c2-matrix analysis enviroment using Suricata + Wazuh + Elastic stack
  ☆12Apr 18, 2020Updated 5 years ago
• iacsecurity / tool-compare

  View on GitHub
  ☆284Dec 1, 2022Updated 3 years ago
• OpenSecuritySummit / project-ASVS-User-Stories

  View on GitHub
  ☆20Jan 18, 2022Updated 4 years ago
• OWASP / threat-modeling-playbook

  View on GitHub
  ☆35Mar 8, 2022Updated 4 years ago
• threatspec / threatspec

  View on GitHub
  threatspec - continuous threat modeling, through code
  ☆383Dec 30, 2020Updated 5 years ago
• OWASP / www-project-apicheck

  View on GitHub
  OWASP Foundation Web Respository
  ☆11May 22, 2023Updated 2 years ago
• pumasecurity / puma-prey

  View on GitHub
  Puma Prey contains vulnerable .NET target applications to test the Puma Scan rules against. This project contains Web Forms, MVC5, and Co…
  ☆21Aug 26, 2025Updated 7 months ago
• GPU virtual machines on DigitalOcean Gradient AI • Ad
  Get to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
• shenril / owasp-asvs-checklist

  View on GitHub
  OWASP ASVS checklist for audits
  ☆215Jan 5, 2024Updated 2 years ago
• secmerc / materialize-threats

  View on GitHub
  ☆69Jul 18, 2025Updated 8 months ago
• javixeneize / zasca

  View on GitHub
  Yet Another SCA tool
  ☆13Nov 10, 2022Updated 3 years ago
• slyd0g / SharpCryptUnprotectData

  View on GitHub
  ☆15Feb 9, 2022Updated 4 years ago
• Autodesk / continuous-threat-modeling

  View on GitHub
  A Continuous Threat Modeling methodology
  ☆324Jun 24, 2022Updated 3 years ago
• Threat-Modeling-Manifesto / threat-modeling-manifesto

  View on GitHub
  Threat Modeling Manifesto
  ☆30Jul 18, 2024Updated last year
• JoasASantos / Trevorfuscation

  View on GitHub
  A tool that automates the trevorc2 powershell agent obfuscation process with the pyfuscation tool
  ☆15Jun 28, 2023Updated 2 years ago
• Contrast-Security-OSS / vulnerable-spring-boot-application

  View on GitHub
  ☆16Oct 8, 2025Updated 5 months ago
• nccgroup / s3_objects_check

  View on GitHub
  Whitebox evaluation of effective S3 object permissions, to identify publicly accessible files.
  ☆78Mar 4, 2022Updated 4 years ago
• Managed Database hosting by DigitalOcean • Ad
  PostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
• morganc3 / KOAuth

  View on GitHub
  OAuth 2.0 Dynamic Security Scanner
  ☆33Feb 27, 2021Updated 5 years ago
• righettod / injection-cheat-sheets

  View on GitHub
  Provide some tips to handle Injection into application code (OWASP TOP 10 - A1).
  ☆10Nov 11, 2020Updated 5 years ago
• kerberosmansour / InfoSecOpenAIExamples

  View on GitHub
  InfoSec OpenAI Examples
  ☆19Nov 26, 2023Updated 2 years ago
• geoffrey-hill-tutamantic / rapid-threat-model-prototyping-docs

  View on GitHub
  This repository stores content that can be used to design a Rapid Threat Model Prototyping process for a software development group.
  ☆165Mar 14, 2023Updated 3 years ago
• blackn0te / Apache-HTTP-Server-2.4.49-2.4.50-Path-Traversal-Remote-Code-Execution

  View on GitHub
  Apache HTTP-Server 2.4.49-2.4.50 Path Traversal & Remote Code Execution PoC (CVE-2021-41773 & CVE-2021-42013)
  ☆13Aug 22, 2025Updated 7 months ago
• RossGeerlings / webstor

  View on GitHub
  WebStor efficiently enumerates all websites across your organization’s networks and those in your DNS records - including cloud-hosted se…
  ☆156Mar 31, 2024Updated last year
• EspressoCake / MITRE_ATTACK_CLI

  View on GitHub
  CLI Search for Security Operators of MITRE ATT&CK URLs
  ☆17Jan 5, 2023Updated 3 years ago