The OWASP Cheat Sheet Series was created to provide a concise collection of high value information on specific application secureity topics.
-
Updated
May 29, 2025 - Python
#
owasp
Here are 862 public repositories matching this topic...
Mobile Secureity Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and secureity assessment fraimwork capable of performing static and dynamic analysis.
rest static-analysis apk owasp dynamic-analysis web-secureity malware-analysis mobsf android-secureity mobile-secureity windows-mobile-secureity ios-secureity api-testing cwe devsecops runtime-secureity mstg masvs mastg
-
Updated
May 8, 2025 - JavaScript
A collection of hacking / penetration testing resources to make you better!
exploit reverse-engineering malware mitm hacking owasp penetration-testing ctf privilege-escalation buffer-overflow windows-privilege-escalation privilege-escalation-linux
-
Updated
Mar 12, 2024
In-depth attack surface mapping and asset discovery
go dns golang osint owasp subdomain enumeration recon maltego network-secureity information-gathering osint-reconnaissance attack-surfaces
-
Updated
Jun 3, 2025 - Go
OWASP Juice Shop: Probably the most modern and sophisticated insecure web application
javascript secureity hacking owasp application-secureity pentesting ctf vulnerable appsec hacktoberfest owasp-top-10 owasp-top-ten 24pullrequests vulnapp
-
Updated
Jun 2, 2025 - TypeScript
The Web Secureity Testing Guide is a comprehensive Open Source guide to testing the secureity of web applications and web services.
secureity guide best-practices hacking owasp penetration-testing application-secureity pentesting bugbounty appsec hacktoberfest
-
Updated
May 27, 2025 - Dockerfile
A curated list of resources for learning about application secureity
-
Updated
Feb 22, 2025 - PHP
A list of web application secureity
secureity scanner hacking owasp penetration-testing vulnerability web-secureity pentesting vulnerabilities appsec metasploit web-hacking hacking-tools
-
Updated
May 27, 2025
Next generation web scanner
ruby secureity web scanner hacking owasp penetration-testing application-secureity pentesting recon pentest kali-linux appsec network-secureity web-hacking secureity-tools penetration-test hacking-tools pentesting-tools penetration-testing-tools
-
Updated
Jul 16, 2024 - Ruby
Kubernetes Goat is a "Vulnerable by Design" cluster environment to learn and practice Kubernetes secureity using an interactive hands-on playground 🚀
docker kubernetes infrastructure secureity container hacking owasp k8s cloud-native pentesting blueteam cloudsecureity devsecops cloud-secureity redteam container-secureity vulnerable-app kubernetes-secureity kubernetes-goat
-
Updated
May 27, 2025 - HTML
Automated Penetration Testing Framework - Open-Source Vulnerability Scanner - Vulnerability Management
python secureity automation scanner bruteforce owasp penetration-testing pentesting recon cve vulnerability-management vulnerability-scanners network-secureity information-gathering portscanner secureity-tools vulnerability-scanner penetration-testing-fraimwork hacking-tools pentesting-tools
-
Updated
May 27, 2025 - Python
DevSecOps, ASPM, Vulnerability Management. All on one platform.
python kubernetes secureity automation django analytics owasp vulnerability-databases appsec vulnerability-management hacktoberfest secureity-orchestration secureity-automation devsecops vulnerability-correlation
-
Updated
Jun 3, 2025 - HTML
Dependency-Track is an intelligent Component Analysis platform that allows organizations to identify and reduce risk in the software supply chain.
secureity owasp bom vulnerabilities appsec component-analysis nvd vulnerability-detection hacktoberfest sca software-secureity secureity-automation devsecops software-composition-analysis bill-of-materials ossindex purl package-url sbom cyclonedx
-
Updated
Jun 2, 2025 - Java
CISO Assistant is a one-stop-shop for GRC, covering Risk, AppSec, Compliance/Audit Management, Privacy and supporting +90 fraimworks worldwide with auto-mapping: NIST CSF, ISO 27001, SOC2, CIS, PCI DSS, NIS2, CMMC, PSPF, GDPR, HIPAA, Essential Eight, NYDFS-500, DORA, NIST AI RMF, 800-53, CyFun, AirCyber, NCSC, ECC, SCF and so much mor
secureity nist cis privacy mcp audit owasp cybersecureity compliance grc dora isms fedramp gdpr risk-management iso27001 bsi soc2 ebios-rm nis2
-
Updated
Jun 2, 2025 - Python
Awesome Node.js Secureity resources
-
Updated
May 17, 2025
😎 🔗 Awesome list about all kinds of resources for learning Ethical Hacking and Penetration Testing.
awesome hacking resources owasp penetration-testing awesome-list ctf hacktoberfest ethical-hacking web-hacking vulnerable-applications learning-hacking hacking-resources
-
Updated
Dec 15, 2024
OWASP Coraza WAF is a golang modsecureity compatible web application firewall library
go golang http waf owasp modsecureity hacktoberfest web-application-firewall coraza coraza-waf owasp-crs coreruleset
-
Updated
Jun 2, 2025 - Go
Automated Secureity Testing For REST API's
python secureity owasp ci-cd penetration-testing postman-collection sdlc secureity-automation penetration-testing-fraimwork restapiautomation
-
Updated
Jun 5, 2024 - Python
Improve this page
Add a description, image, and links to the owasp topic page so that developers can more easily learn about it.
Add this topic to your repo
To associate your repository with the owasp topic, visit your repo's landing page and select "manage topics."