Vulnerable app with examples showing how to not use secrets
-
Updated
Jun 3, 2024 - Java
Vulnerable app with examples showing how to not use secrets
OWASP Community Pages are a place where OWASP can accept community contributions for security-related content.
Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis.
GSoC 2022 Project testing CVEs against CRS
CISO Assistant is a one-stop-shop for GRC, covering Risk, AppSec and Audit Management and supporting +43 frameworks worldwide: NIST CSF, ISO 27001, SOC2, CIS, PCI DSS, NIS2, CMMC, PSPF, GDPR, HIPAA, Essential Eight, NYDFS-500, DORA, NIST AI RMF, 800-53, 800-171, CyFun, CJIS, AirCyber and so much more
Dependency-Track is an intelligent Component Analysis platform that allows organizations to identify and reduce risk in the software supply chain.
Create CycloneDX Software Bill of Materials (SBOM) from Node.js NPM projects.
An open source threat modeling tool from OWASP
Python implementation of OWASP CycloneDX
CycloneDX Software Bill of Materials (SBOM) generator for Python projects and environments
The Web Security Testing Guide is a comprehensive Open Source guide to testing the security of web applications and web services.
Create CycloneDX Software Bill of Materials (SBOM) from PHP Composer projects
Creates CycloneDX Software Bill of Materials (SBOM) from Rust (Cargo) projects
I love to teach dotnet concepts in a simple way with real world examples to people who aspire to to be a dotnet developer. I also help developers to refresh their memory with easy to understand analogy.
OWASP Coraza middleware for Caddy. It provides Web Application Firewall capabilities
End to End testing of Web, API, Cloud, Events and Security
Bug Bounty Tricks and useful payloads and bypasses for Web Application Security.
secureCodeBox (SCB) - continuous secure delivery out of the box
open-appsec is a machine learning security engine that preemptively and automatically prevents threats against Web Application & APIs. This repo include the main code and logic.
Add a description, image, and links to the owasp topic page so that developers can more easily learn about it.
To associate your repository with the owasp topic, visit your repo's landing page and select "manage topics."