Skip to content
@OWASP

OWASP

The OWASP Foundation

Popular repositories Loading

  1. CheatSheetSeries CheatSheetSeries Public

    The OWASP Cheat Sheet Series was created to provide a concise collection of high value information on specific application security topics.

    Python 31.4k 4.4k

  2. mastg mastg Public

    The OWASP Mobile Application Security Testing Guide (MASTG) is a comprehensive manual for mobile app security testing and reverse engineering. It describes technical processes for verifying the OWA…

    Python 12.7k 2.7k

  3. wstg wstg Public

    The Web Security Testing Guide is a comprehensive Open Source guide to testing the security of web applications and web services.

    8.9k 1.6k

  4. Top10 Top10 Public

    Official OWASP Top 10 Document Repository

    HTML 5.3k 1k

  5. Go-SCP Go-SCP Public

    Golang Secure Coding Practices guide

    Go 5.3k 398

  6. Nettacker Nettacker Public

    Automated Penetration Testing Framework - Open-Source Vulnerability Scanner - Vulnerability Management

    Python 4.8k 999

Repositories

Showing 10 of 1349 repositories
  • cornucopia Public

    The source files and tools needed to build the OWASP Cornucopia decks in various languages

    OWASP/cornucopia’s past year of commit activity
    Python 98 CC-BY-SA-4.0 64 41 (22 issues need help) 13 Updated Feb 20, 2026
  • mas-website Public

    The OWASP Mobile Application Security Project website is the central hub for industry-leading standards, guides, and resources—helping developers and security professionals build, test, and secure mobile applications.

    OWASP/mas-website’s past year of commit activity
    TypeScript 5 CC-BY-SA-4.0 5 3 4 Updated Feb 20, 2026
  • mastg Public

    The OWASP Mobile Application Security Testing Guide (MASTG) is a comprehensive manual for mobile app security testing and reverse engineering. It describes technical processes for verifying the OWASP Mobile Security Weakness Enumeration (MASWE) weaknesses, which are in alignment with the OWASP MASVS.

    OWASP/mastg’s past year of commit activity
    Python 12,726 CC-BY-SA-4.0 2,671 193 58 Updated Feb 20, 2026
  • Nest Public

    Your gateway to OWASP. Discover, engage, and help shape the future!

    OWASP/Nest’s past year of commit activity
    Python 382 MIT 527 230 57 Updated Feb 20, 2026
  • www-project-eks-goat Public

    OWASP EKS Goat is a deliberately vulnerable EKS cluster environment to explore AWS cloud-native security through hands-on attack and defense labs with walkthrough.

    OWASP/www-project-eks-goat’s past year of commit activity
    Shell 38 GPL-3.0 39 0 0 Updated Feb 20, 2026
  • www-chapter-italy Public

    OWASP Foundation Web Respository

    OWASP/www-chapter-italy’s past year of commit activity
    HTML 10 4 0 0 Updated Feb 20, 2026
  • wrongsecrets Public

    Vulnerable app with examples showing how to not use secrets

    OWASP/wrongsecrets’s past year of commit activity
    Java 1,394 AGPL-3.0 527 25 (9 issues need help) 16 Updated Feb 20, 2026
  • www-community Public

    OWASP Community Pages are a place where OWASP can accept community contributions for security-related content.

    OWASP/www-community’s past year of commit activity
    HTML 1,323 814 10 (1 issue needs help) 4 Updated Feb 20, 2026
  • wrongsecrets-ctf-party Public Forked from juice-shop/multi-juicer

    Run Capture the Flags and Security Trainings with OWASP WrongSecrets

    OWASP/wrongsecrets-ctf-party’s past year of commit activity
    JavaScript 55 Apache-2.0 175 7 (5 issues need help) 23 Updated Feb 20, 2026
  • www-chapter-netherlands Public

    OWASP Foundation Web Respository

    OWASP/www-chapter-netherlands’s past year of commit activity
    HTML 6 5 1 1 Updated Feb 20, 2026
View all repositories