OWASP/owasp-istg external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

OWASP/owasp-istg

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/OWASP/owasp-istg)

Close

OWASP / owasp-istgView on GitHubMore

• External links
• Readme badge

The IoT Security Testing Guide (ISTG) provides a comprehensive methodology for penetration tests in the IoT field, offering flexibility to adapt innovations, and developments in the IoT market while still ensuring comparability of test results.

☆118Jul 29, 2025Updated 9 months ago

Alternatives and similar repositories for owasp-istg

Users that are interested in owasp-istg are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• cisagov / icsnpp-ethercat

  View on GitHub
  Zeek Ethercat Parser - CISA ICSNPP
  ☆18Mar 3, 2026Updated 2 months ago
• cutaway-security / IACS_STAR_Methodology

  View on GitHub
  A risk rating calculation methodology that uses the OWASP Risk Rating Methodology as a basis.
  ☆33Sep 4, 2024Updated last year
• anton-shipulin / Beer-ISAC

  View on GitHub
  Beer-ISAC Community Resources
  ☆27Jan 22, 2021Updated 5 years ago
• DhaeyerWolf / ICS-OT_wireshark_profiles

  View on GitHub
  ICS/OT related Wireshark profiles + adding some other (IT or OT related) Open Source Wireshark Profiles
  ☆18Mar 21, 2025Updated last year
• OWASP / IoT-Security-Verification-Standard-ISVS

  View on GitHub
  OWASP IoT Security Verification Standard (ISVS)
  ☆150Oct 6, 2025Updated 7 months ago
• Deploy on Railway without the complexity - Free Credits Offer • Ad
  Connect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
• themyops / ICS_Threat_modelling

  View on GitHub
  A Microsoft Threat Modelling tool template for ICS threat modelling
  ☆13Aug 20, 2020Updated 5 years ago
• cutaway-security / cutsec_presentations

  View on GitHub
  Presentation Slides and Resources
  ☆16Jun 12, 2024Updated last year
• cutaway-security / CloudSec-IACS

  View on GitHub
  Cloud security documents and tools to assist with conducting risk assessments that conform to the ICS62443 guidelines
  ☆13Mar 20, 2026Updated last month
• reidmefirst / WirelessHART-Parser

  View on GitHub
  Wireshark dissector for wirelessHART
  ☆13Aug 2, 2017Updated 8 years ago
• intrudir / burpcollaborator-docker

  View on GitHub
  A set of scripts to install a Burp Collaborator Server in a docker environment, using a LetsEncrypt wildcard certificate in as simple a p…
  ☆30Nov 30, 2025Updated 5 months ago
• CrySyS / bro-step7-plugin

  View on GitHub
  A proof of concept implementation of the Siemens S7 protocol analyser for the Bro IDS.
  ☆16Mar 26, 2017Updated 9 years ago
• padok-team / cognito-scanner

  View on GitHub
  A simple script which implements different Cognito attacks such as Account Oracle or Priviledge Escalation
  ☆110Feb 16, 2024Updated 2 years ago
• fkie-cad / Codescanner

  View on GitHub
  ☆11Nov 14, 2024Updated last year
• CyberICS / Suricata-Rules-for-ICS-SCADA

  View on GitHub
  Suricata rules for SCADA
  ☆16Jun 4, 2022Updated 3 years ago
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
• VerSprite / fork-community

  View on GitHub
  Fork Threat Modeling Platform - Community
  ☆28Oct 10, 2025Updated 6 months ago
• industrialarmy / ics_exploits

  View on GitHub
  Exploit funcionales para pruebas de seguridad en entornos industriales
  ☆11Jul 8, 2020Updated 5 years ago
• icsadvprj / ICS-Advisory-Project

  View on GitHub
  The ICS Advisory Project is an open-source project to provide CISA ICS Advisories data in Comma Separated Value (CSV) format to support v…
  ☆94Updated this week
• cisagov / icsnpp-s7comm

  View on GitHub
  Zeek S7comm, S7comm-plus, and COTP Parser - CISA ICSNPP
  ☆29Mar 3, 2026Updated 2 months ago
• akiUp / ICSUnitSim

  View on GitHub
  Simulation of Industrial process unit on ESP32 board with ModbusTCP interface
  ☆22Sep 19, 2020Updated 5 years ago
• 9olidity / MCP-Server-Pentest

  View on GitHub
  ☆22Mar 24, 2025Updated last year
• desolat / scapy-bacnet

  View on GitHub
  A BACnet layer for Scapy
  ☆13Nov 25, 2015Updated 10 years ago
• cisagov / icsnpp-opcua-binary

  View on GitHub
  Zeek OPCUA Binary Parser - CISA ICSNPP
  ☆21Mar 3, 2026Updated 2 months ago
• kenexis / PortableICS-MITM

  View on GitHub
  Set of data collected during a series of man-in-the-middle (MITM) attacks run against the Kenexis Portable Industrial Control System (ICS…
  ☆27Nov 17, 2015Updated 10 years ago
• Deploy to Railway using AI coding agents - Free Credits Offer • Ad
  Use Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
• selmux / Alhasawi-ICS-OT-Security-projetcs

  View on GitHub
  ICS security resources
  ☆135May 7, 2025Updated last year
• Baldanos / cortex-m-antidebug

  View on GitHub
  ☆18Nov 19, 2020Updated 5 years ago
• LiuYuancheng / IT_OT_IoT_Cyber_Security_Workshop

  View on GitHub
  ☆18Apr 13, 2026Updated 3 weeks ago
• mmguero-dev / Malcolm-PCAP

  View on GitHub
  This repository has been archived in favor of https://github.com/idaholab/Malcolm-Test-Artifacts
  ☆38Dec 11, 2024Updated last year
• amzn / zeek-plugin-s7comm

  View on GitHub
  Zeek network security monitor plugin that enables parsing of the S7 protocol
  ☆42May 30, 2024Updated last year
• Nextdoor / cspm_evaluation_matrix

  View on GitHub
  Nextdoor's Cloud Security Posture Management (CSPM) Evaluation Matrix
  ☆59Sep 7, 2023Updated 2 years ago
• fraktalcyber / lfi-rig

  View on GitHub
  Fraktal's take on building an affordable Laser Fault Injection Rig
  ☆96Oct 2, 2024Updated last year
• berylliumsec / eclipse

  View on GitHub
  AI Powered Sensitive Information Detection
  ☆20Mar 13, 2024Updated 2 years ago
• peass-ng / Blue-CloudPEASS

  View on GitHub
  ☆149Feb 26, 2026Updated 2 months ago
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
• aws-samples / drs-malware-scan

  View on GitHub
  Perform file-based malware scan on your on-prem servers with AWS
  ☆14Oct 31, 2023Updated 2 years ago
• AlirezaDehlaghi / ICSSIM

  View on GitHub
  This is the ICSSIM source code and user manual for simulating industrial control system testbed for cybersecurity experiments
  ☆93Jun 19, 2024Updated last year
• ine-labs / ICSGoat

  View on GitHub
  ICSGoat: A Damn Vulnerable ICS Infrastructure
  ☆33Aug 26, 2024Updated last year
• V33RU / awesome-connected-things-sec

  View on GitHub
  A Curated list of Security Resources for all connected things
  ☆3,305Apr 25, 2026Updated 2 weeks ago
• doyensec / r2pickledec

  View on GitHub
  Pickle decompiler plugin for Radare2
  ☆18Aug 6, 2023Updated 2 years ago
• alainiamburg / PVED

  View on GitHub
  Purposely Vulnerable Embedded Device
  ☆22Jun 19, 2017Updated 8 years ago
• awslabs / Chatbot-to-help-security-teams-perform-vulnerability-assessments

  View on GitHub
  ☆29Dec 26, 2025Updated 4 months ago