OWASP / ASVS
Application Security Verification Standard
☆2,993Updated this week
Alternatives and similar repositories for ASVS
Users that are interested in ASVS are comparing it to the libraries listed below
Sorting:
- Official OWASP Top 10 Document Repository☆4,590Updated 5 months ago
- Security Knowledge Framework (SKF) Python Flask / Angular project☆820Updated last year
- OWASP API Security Project☆2,159Updated 4 months ago
- Getting a handle on container security��☆650Updated last year
- SAMM stands for Software Assurance Maturity Model.☆399Updated 2 years ago
- Web and mobile application security training platform☆1,376Updated 10 months ago
- A curated list of threat modeling resources (Books, courses - free and paid, videos, tools, tutorials and workshops to practice on ) for …☆1,530Updated 9 months ago
- DevSecOps, ASPM, Vulnerability Management. All on one platform.☆4,006Updated this week
- This repo is no longer in use. Please refer to https://github.com/OWASP/www-project-vulnerable-web-applications-directory☆879Updated 6 months ago
- A collection of awesome API Security tools and resources. The focus goes to open-source tools and resources that benefit all the communit…☆3,278Updated last month
- OWASP Community Pages are a place where OWASP can accept community contributions for security-related content.☆1,205Updated this week
- The Web Security Testing Guide is a comprehensive Open Source guide to testing the security of web applications and web services.☆7,924Updated 2 weeks ago
- OWASP Foundation Web Respository☆1,200Updated 8 months ago
- This project is about creating and publishing threat model examples.☆419Updated 3 years ago
- An open source threat modeling tool from OWASP☆1,093Updated this week
- The OWASP MASVS (Mobile Application Security Verification Standard) is the industry standard for mobile app security.☆2,158Updated 8 months ago
- A Pythonic framework for threat modeling☆996Updated 2 months ago
- threatspec - continuous threat modeling, through code☆357Updated 4 years ago
- Vulnerable app with examples showing how to not use secrets☆1,310Updated this week
- The Web Security Testing Guide (WSTG) Project produces the premier cybersecurity testing resource for web application developers and secu…☆493Updated 2 weeks ago
- scanner detecting the use of JavaScript libraries with known vulnerabilities. Can also generate an SBOM of the libraries it finds.☆3,824Updated last month
- This challenge is Inon Shkedy's 31 days API Security Tips.☆2,120Updated 3 years ago
- The OWASP DevSecOps Guideline can help us to embedding security as a part of the development pipeline.☆926Updated 2 months ago
- grep rough audit - source code auditing tool☆1,605Updated 3 weeks ago
- A collection of ZAP scripts and tips provided by the community - pull requests very welcome!☆827Updated last month
- ASOC, ASPM, DevSecOps, Vulnerability Management Using ArcherySec.☆2,359Updated 7 months ago
- ☆524Updated this week
- Dictionary of attack patterns and primitives for black-box application fault injection and resource discovery.☆8,518Updated last year
- The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.☆4,684Updated last month
- Automated Security Testing For REST API's☆2,573Updated 11 months ago