OWASP / ASVS
Application Security Verification Standard
☆2,751Updated this week
Related projects ⓘ
Alternatives and complementary repositories for ASVS
- OWASP API Security Project☆2,066Updated 3 weeks ago
- Security Knowledge Framework (SKF) Python Flask / Angular project☆813Updated 8 months ago
- Web and mobile application security training platform☆1,349Updated 4 months ago
- Official OWASP Top 10 Document Repository☆4,337Updated 2 months ago
- This repo is no longer in use. Please refer to https://github.com/OWASP/www-project-vulnerable-web-applications-directory☆873Updated 3 weeks ago
- SAMM stands for Software Assurance Maturity Model.☆397Updated 2 years ago
- Offensive Web Testing Framework (OWTF), is a framework which tries to unite great tools and make pen testing more efficient http://owtf.o…☆1,821Updated 3 weeks ago
- Getting a handle on container security☆632Updated 11 months ago
- DevSecOps, ASPM, Vulnerability Management. All on one platform.☆3,731Updated this week
- The Secure Coding Dojo is a platform for delivering secure coding knowledge.☆546Updated 3 months ago
- An open source threat modeling tool from OWASP☆933Updated last week
- ASOC, ASPM, DevSecOps, Vulnerability Management Using ArcherySec.☆2,295Updated last month
- OWASP Community Pages are a place where OWASP can accept community contributions for security-related content.☆1,132Updated this week
- The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.☆4,399Updated this week
- The OWASP NodeGoat project provides an environment to learn how OWASP Top 10 security risks apply to web applications developed using Nod…☆1,886Updated 5 months ago
- An authoritative list of awesome devsecops tools with the help from community experiments and contributions.☆4,642Updated 6 months ago
- A collection of ZAP scripts and tips provided by the community - pull requests very welcome!☆789Updated last week
- The OWASP Guide☆2,045Updated last year
- The Web Security Testing Guide (WSTG) Project produces the premier cybersecurity testing resource for web application developers and secu…☆448Updated 3 weeks ago
- This project is about creating and publishing threat model examples.☆409Updated 3 years ago
- Scan is a free & Open Source DevSecOps tool for performing static analysis based security testing of your applications and its dependenci…☆808Updated last year
- The OWASP DevSecOps Guideline can help us to embedding security as a part of the development pipeline.☆848Updated 4 months ago
- scanner detecting the use of JavaScript libraries with known vulnerabilities. Can also generate an SBOM of the libraries it finds.☆3,690Updated this week
- A Pythonic framework for threat modeling☆921Updated last week
- Security Champions Playbook v 2.1☆350Updated last year
- An open source, online threat modelling tool from OWASP☆483Updated 4 months ago
- Draw.io libraries for threat modeling diagrams☆700Updated 4 years ago
- Application Security Automation☆522Updated last year
- ZAP Add-ons☆840Updated this week