anxolerd / dvpwa

Related projects: ⓘ

• fportantier / vulpy
  Vulnerable Python Application To Learn Secure Development
  ☆95Updated 3 months ago
• appsecco / dvja
  Damn Vulnerable Java (EE) Application
  ☆129Updated 7 months ago
• DevSlop / Pixi
  The Pixi module is a MEAN Stack web app with wildly insecure APIs!
  ☆110Updated last year
• adeyosemanputra / pygoat
  intentionally vuln web Application Security in django
  ☆211Updated 3 weeks ago
• absoluteappsec / handouts
  materials we hand out
  ☆127Updated last week
• ScaleSec / vulnado
  Purposely vulnerable Java application to help lead secure coding workshops
  ☆164Updated 2 months ago
• security-prince / Resources-for-Application-Security
  Some good resources for getting started with application security
  ☆133Updated 3 years ago
• Checkmarx / capital
  A built-to-be-vulnerable API application based on the OWASP top 10 API vulnerabilities. Use c{api}tal to learn, train and exploit API Sec…
  ☆269Updated 5 months ago
• edgeroute / security-champion-framework
  The Security Champion Framework provides both a measuring stick and a roadmap generator for Champion Programs.
  ☆102Updated 8 months ago
• appsecco / attacking-cloudgoat2
  A step-by-step walkthrough of CloudGoat 2.0 scenarios.
  ☆132Updated 4 years ago
• Whitespots-OU / security-requirements-generator
  A small tool to help developers understand a huge set of security requirements from appsec teams
  ☆39Updated 2 years ago
• mattvaldes / vulnerable-api
  This repository contains an example Python API that is vulnerable to several different web API attacks.
  ☆69Updated 7 months ago
• BlazingWind / OWASP-ASVS-4.0-testing-guide
  ☆118Updated 10 months ago
• m6a-UdS / dvca
  Damn Vulnerable Cloud Application
  ☆183Updated 6 years ago
• OWASP / www-project-devsecops-guideline
  The OWASP DevSecOps Guideline explains how we can implement a secure pipeline and use best practices and introduce tools that we can use …
  ☆58Updated 3 months ago
• jeevan-singh / Security-Engineering-Training
  ☆30Updated 3 years ago
• jorritfolmer / vulnerable-api
  Enhanced fork with logging, OpenAPI 3.0 and Python 3 for security monitoring workshops
  ☆41Updated 7 months ago
• Toreon / threat-model-playbook
  ☆78Updated 3 years ago
• mllamazares / STRIDE-vs-ASVS
  🖇️ STRIDE vs. ASVS equivalence table
  ☆74Updated 3 weeks ago
• we45 / Vulnerable-Flask-App
  Intentionally Vulnerable Flask app for use in Demos
  ☆28Updated 3 months ago
• threatspec / threatspec
  threatspec - continuous threat modeling, through code
  ☆327Updated 3 years ago
• JavierOlmedo / OWASP-Calculator
  🧮 An online calculator to assess the risk of web vulnerabilities based on OWASP Risk Assessment
  ☆142Updated 3 years ago
• pbnj / infosec-interview-questions
  🗒️ A [work-in-progress] collection for interview questions for Information Security roles
  ☆133Updated last year
• DefectDojo / defectdojo_api
  Python API library for DefectDojo
  ☆40Updated last year
• ShiftLeftSecurity / tarpit-java
  Tarpit - A Web application seeded with vulnerabilities, rootkits, backdoors & data leaks
  ☆75Updated 2 years ago
• optiv / rest-api-goat
  ☆69Updated last year
• RyanJarv / awesome-cloud-sec
  Awesome list for cloud security related projects
  ☆70Updated last year
• semgrep-old / rules-owasp-asvs
  Semgrep rules corresponding to the OWASP ASVS standard
  ☆27Updated 3 years ago
• Checkmarx / Goatlin
  (aka Kotlin Goat) - an intentionally vulnerable Kotlin application
  ☆33Updated 5 months ago
• softwaresecured / secure-code-review-checklist
  A starter secure code review checklist
  ☆175Updated 5 years ago