BlazingWind/OWASP-ASVS-4.0-testing-guide external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

BlazingWind/OWASP-ASVS-4.0-testing-guide

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/BlazingWind/OWASP-ASVS-4.0-testing-guide)

Close

BlazingWind / OWASP-ASVS-4.0-testing-guideView on GitHubMore

• External links
• Readme badge

☆125Nov 8, 2023Updated 2 years ago

Alternatives and similar repositories for OWASP-ASVS-4.0-testing-guide

Users that are interested in OWASP-ASVS-4.0-testing-guide are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• nicoSWD / asvs-checklist

  View on GitHub
  OWASP Application Security Verification Standard 4.0 Checklist
  ☆33Apr 15, 2019Updated 7 years ago
• Santandersecurityresearch / asvs

  View on GitHub
  A simple web app that helps developers understand the ASVS requirements. Now supporting ASVS 5.0
  ☆167Jun 3, 2026Updated last week
• spoofzu / jvmxray

  View on GitHub
  Externalize Java application access to protected resources as log messages.
  ☆45May 29, 2026Updated 2 weeks ago
• semgrep-old / rules-owasp-asvs

  View on GitHub
  Semgrep rules corresponding to the OWASP ASVS standard
  ☆27Nov 2, 2020Updated 5 years ago
• mllamazares / STRIDE-vs-ASVS

  View on GitHub
  🖇️ equivalence table between OWASP ASVS standard and STRIDE threat modeling methodology.
  ☆76Aug 22, 2024Updated last year
• Virtual machines for every use case on DigitalOcean • Ad
  Get dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
• we45 / ZAP-Mini-Workshop

  View on GitHub
  Interactive IPython Notebook to demonstrate OWASP ZAP's API and Scripting Functions - OWASP ZAP 2.8.0
  ☆41Dec 8, 2022Updated 3 years ago
• cydea / threat-personas

  View on GitHub
  We borrow the concept of 'personas' from UX/service design and apply it to threat actors to improve understanding between security, techn…
  ☆11Jun 17, 2020Updated 5 years ago
• Whitespots-OU / security-requirements-generator

  View on GitHub
  A small tool to help developers understand a huge set of security requirements from appsec teams
  ☆47Sep 2, 2022Updated 3 years ago
• edgeroute / security-champion-framework

  View on GitHub
  The Security Champion Framework provides both a measuring stick and a roadmap generator for Champion Programs.
  ☆110Jan 16, 2024Updated 2 years ago
• OWASP / threat-model-cookbook

  View on GitHub
  This project is about creating and publishing threat model examples.
  ☆428Nov 10, 2021Updated 4 years ago
• P3tra-WP / Jupyter-Threat

  View on GitHub
  ☆15Dec 3, 2022Updated 3 years ago
• mario-platt / ASVS-Agile-Delivery-Guide

  View on GitHub
  ☆35May 13, 2021Updated 5 years ago
• we45 / RoboZap

  View on GitHub
  ☆32May 22, 2023Updated 3 years ago
• we45 / Gauge-OWASP-ZAP

  View on GitHub
  Example of using Gauge and OWASP ZAP for test automation
  ☆11Jan 9, 2020Updated 6 years ago
• End-to-end encrypted cloud storage - Proton Drive • Ad
  Special offer: 40% Off Yearly / 80% Off First Month. Protect your most important files, photos, and documents from prying eyes.
• h0rv4th / c2matrix-analyzer

  View on GitHub
  Basic c2-matrix analysis enviroment using Suricata + Wazuh + Elastic stack
  ☆13Apr 18, 2020Updated 6 years ago
• OWASP / ASVS

  View on GitHub
  Application Security Verification Standard
  ☆3,458Mar 17, 2026Updated 2 months ago
• iacsecurity / tool-compare

  View on GitHub
  ☆285Dec 1, 2022Updated 3 years ago
• OpenSecuritySummit / project-ASVS-User-Stories

  View on GitHub
  ☆21Jan 18, 2022Updated 4 years ago
• OWASP / threat-modeling-playbook

  View on GitHub
  ☆38Mar 8, 2022Updated 4 years ago
• threatspec / threatspec

  View on GitHub
  threatspec - continuous threat modeling, through code
  ☆388Dec 30, 2020Updated 5 years ago
• OWASP / www-project-apicheck

  View on GitHub
  OWASP Foundation Web Respository
  ☆11May 22, 2023Updated 3 years ago
• shenril / owasp-asvs-checklist

  View on GitHub
  OWASP ASVS checklist for audits
  ☆216Jan 5, 2024Updated 2 years ago
• secmerc / materialize-threats

  View on GitHub
  ☆69Jul 18, 2025Updated 10 months ago
• Deploy on Railway without the complexity - Free Credits Offer • Ad
  Connect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
• RandoriDev / test-saml-idp

  View on GitHub
  ☆30Jul 29, 2021Updated 4 years ago
• javixeneize / zasca

  View on GitHub
  Yet Another SCA tool
  ☆13Nov 10, 2022Updated 3 years ago
• slyd0g / SharpCryptUnprotectData

  View on GitHub
  ☆15Feb 9, 2022Updated 4 years ago
• Autodesk / continuous-threat-modeling

  View on GitHub
  A Continuous Threat Modeling methodology
  ☆329Jun 24, 2022Updated 3 years ago
• JoasASantos / Trevorfuscation

  View on GitHub
  A tool that automates the trevorc2 powershell agent obfuscation process with the pyfuscation tool
  ☆14Jun 28, 2023Updated 2 years ago
• nccgroup / s3_objects_check

  View on GitHub
  Whitebox evaluation of effective S3 object permissions, to identify publicly accessible files.
  ☆77Mar 4, 2022Updated 4 years ago
• morganc3 / KOAuth

  View on GitHub
  OAuth 2.0 Dynamic Security Scanner
  ☆33Feb 27, 2021Updated 5 years ago
• geoffrey-hill-tutamantic / rapid-threat-model-prototyping-docs

  View on GitHub
  This repository stores content that can be used to design a Rapid Threat Model Prototyping process for a software development group.
  ☆165Mar 14, 2023Updated 3 years ago
• RossGeerlings / webstor

  View on GitHub
  WebStor efficiently enumerates all websites across your organization’s networks and those in your DNS records - including cloud-hosted se…
  ☆157Mar 31, 2024Updated 2 years ago
• Deploy on Railway without the complexity - Free Credits Offer • Ad
  Connect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
• EspressoCake / MITRE_ATTACK_CLI

  View on GitHub
  CLI Search for Security Operators of MITRE ATT&CK URLs
  ☆17Jan 5, 2023Updated 3 years ago
• spyd3r / owasp-asvs-github

  View on GitHub
  ☆18Apr 21, 2020Updated 6 years ago
• DigeeX / raider

  View on GitHub
  DEPRECATED, please use the new repository from OWASP: https://github.com/OWASP/raider
  ☆139Sep 14, 2021Updated 4 years ago
• segmentio / threat-modeling-training

  View on GitHub
  Segment's Threat Modeling training for our engineers
  ☆246May 4, 2021Updated 5 years ago
• CasperGN / MFASweep.py

  View on GitHub
  Test Azure environment for MFA misconfigurations
  ☆12Jan 13, 2023Updated 3 years ago
• OWASP / pytm

  View on GitHub
  A Pythonic framework for threat modeling
  ☆1,130May 22, 2026Updated 3 weeks ago
• jordanpotti / rt-reading

  View on GitHub
  List of Red Team Resources
  ☆18Jun 16, 2020Updated 6 years ago