OWASP / ASVS
Application Security Verification Standard
☆2,804Updated this week
Alternatives and similar repositories for ASVS:
Users that are interested in ASVS are comparing it to the libraries listed below
- The Web Security Testing Guide is a comprehensive Open Source guide to testing the security of web applications and web services.☆7,520Updated this week
- OWASP API Security Project☆2,101Updated 2 weeks ago
- This repo is no longer in use. Please refer to https://github.com/OWASP/www-project-vulnerable-web-applications-directory☆875Updated 2 months ago
- Official OWASP Top 10 Document Repository☆4,424Updated last month
- Web and mobile application security training platform☆1,358Updated 6 months ago
- A curated list of threat modeling resources (Books, courses - free and paid, videos, tools, tutorials and workshops to practice on ) for …☆1,442Updated 5 months ago
- Security Knowledge Framework (SKF) Python Flask / Angular project☆812Updated 10 months ago
- SAMM stands for Software Assurance Maturity Model.☆398Updated 2 years ago
- OWASP Foundation Web Respository☆1,142Updated 4 months ago
- OWASP Web Application Security Testing Checklist☆1,785Updated 2 years ago
- A Pythonic framework for threat modeling☆943Updated 3 weeks ago
- ASOC, ASPM, DevSecOps, Vulnerability Management Using ArcherySec.☆2,303Updated 3 months ago
- Getting a handle on container security☆638Updated last year
- An open source threat modeling tool from OWASP☆980Updated this week
- An open source, online threat modelling tool from OWASP☆483Updated 6 months ago
- Agile Threat Modeling Toolkit☆635Updated 3 weeks ago
- An installable desktop variant of OWASP Threat Dragon☆595Updated 2 months ago
- This project is about creating and publishing threat model examples.☆412Updated 3 years ago
- The OWASP Cheat Sheet Series was created to provide a concise collection of high value information on specific application security topic…☆28,628Updated this week
- scanner detecting the use of JavaScript libraries with known vulnerabilities. Can also generate an SBOM of the libraries it finds.☆3,740Updated this week
- OWASP based Web Application Security Testing Checklist is an Excel based checklist which helps you to track the status of completed and p…☆1,532Updated last year
- Vulnerable app with examples showing how to not use secrets☆1,260Updated this week
- Offensive Web Testing Framework (OWTF), is a framework which tries to unite great tools and make pen testing more efficient http://owtf.o…☆1,832Updated last month
- OWASP Benchmark is a test suite designed to verify the speed and accuracy of software vulnerability detection tools. A fully runnable web…☆681Updated this week
- The Web Security Testing Guide (WSTG) Project produces the premier cybersecurity testing resource for web application developers and secu…☆462Updated this week
- Dependency-Track is an intelligent Component Analysis platform that allows organizations to identify and reduce risk in the software supp…☆2,786Updated this week
- completely ridiculous API (crAPI)☆1,159Updated last month
- Scan is a free & Open Source DevSecOps tool for performing static analysis based security testing of your applications and its dependenci…☆822Updated last year
- OWASP dependency-check is a software composition analysis utility that detects publicly disclosed vulnerabilities in application dependen…☆6,638Updated this week
- OWASP Juice Shop: Probably the most modern and sophisticated insecure web application☆10,680Updated this week