WstgThe Web Security Testing Guide is a comprehensive Open Source guide to testing the security of web applications and web services.
Stars: ✭ 3,873 (-79.93%)
juice-shopOWASP Juice Shop: Probably the most modern and sophisticated insecure web application
Stars: ✭ 7,533 (-60.97%)
Juice ShopOWASP Juice Shop: Probably the most modern and sophisticated insecure web application
Stars: ✭ 6,270 (-67.52%)
SecurityratOWASP SecurityRAT (version 1.x) - Tool for handling security requirements in development
Stars: ✭ 115 (-99.4%)
WhatwebNext generation web scanner
Stars: ✭ 3,503 (-81.85%)
Zap HudThe OWASP ZAP Heads Up Display (HUD)
Stars: ✭ 201 (-98.96%)
tutorialsAdditional Resources For Securing The Stack Tutorials
Stars: ✭ 36 (-99.81%)
ZaproxyThe OWASP ZAP core project
Stars: ✭ 9,078 (-52.97%)
Www CommunityOWASP Community Pages are a place where OWASP can accept community contributions for security-related content.
Stars: ✭ 409 (-97.88%)
Security Code ScanVulnerability Patterns Detector for C# and VB.NET
Stars: ✭ 550 (-97.15%)
Awesome AppsecA curated list of resources for learning about application security
Stars: ✭ 4,761 (-75.33%)
Owasp VwadThe OWASP Vulnerable Web Applications Directory project (VWAD) is a comprehensive and well maintained registry of all known vulnerable web applications currently available.
Stars: ✭ 487 (-97.48%)
juice-shop-ctfCapture-the-Flag (CTF) environment setup tools for OWASP Juice Shop supporting CTFd, FBCTF and RootTheBox
Stars: ✭ 287 (-98.51%)
Sbt Dependency CheckSBT Plugin for OWASP DependencyCheck. Monitor your dependencies and report if there are any publicly known vulnerabilities (e.g. CVEs). 🌈
Stars: ✭ 187 (-99.03%)
BulwarkAn organizational asset and vulnerability management tool, with Jira integration, designed for generating application security reports.
Stars: ✭ 113 (-99.41%)
Web MethodologyMethodology for high-quality web application security testing - https://github.com/tprynn/web-methodology/wiki
Stars: ✭ 142 (-99.26%)
Juice Shop CtfCapture-the-Flag (CTF) environment setup tools for OWASP Juice Shop
Stars: ✭ 238 (-98.77%)
LearningResourcesA centralised hub for learner around the globe from A-Z. You can find collections of manuals, blogs, hacks, one liners, courses, other free learning-resources and more
Stars: ✭ 63 (-99.67%)
JWTweakDetects the algorithm of input JWT Token and provide options to generate the new JWT token based on the user selected algorithm.
Stars: ✭ 85 (-99.56%)
CheatsheetsQuick reference material for techies
Stars: ✭ 66 (-99.66%)
zap-sonar-pluginIntegrates OWASP Zed Attack Proxy reports into SonarQube
Stars: ✭ 66 (-99.66%)
Application Security Engineer Interview QuestionsSome of the questions which i was asked when i was giving interviews for Application/Product Security roles. I am sure this is not an exhaustive list but i felt these questions were important to be asked and some were challenging to answer
Stars: ✭ 267 (-98.62%)
nodejssecurityDocumentation for Essential Node.js Security
Stars: ✭ 64 (-99.67%)
nerdbugFull Nuclei automation script with logic explanation.
Stars: ✭ 153 (-99.21%)
dependency-check-pluginJenkins plugin for OWASP Dependency-Check. Inspects project components for known vulnerabilities (e.g. CVEs).
Stars: ✭ 107 (-99.45%)
Dependency TrackDependency-Track is an intelligent Component Analysis platform that allows organizations to identify and reduce risk in the software supply chain.
Stars: ✭ 718 (-96.28%)
www-project-zapOWASP Zed Attack Proxy project landing page.
Stars: ✭ 52 (-99.73%)
vapivAPI is Vulnerable Adversely Programmed Interface which is Self-Hostable API that mimics OWASP API Top 10 scenarios through Exercises.
Stars: ✭ 674 (-96.51%)
sqlinjection-training-appA simple PHP application to learn SQL Injection detection and exploitation techniques.
Stars: ✭ 56 (-99.71%)
auth analyzerBurp Extension for testing authorization issues. Automated request repeating and parameter value extraction on the fly.
Stars: ✭ 77 (-99.6%)
WotanPluggable TypeScript and JavaScript linter
Stars: ✭ 271 (-98.6%)
Cloud ReportsScans your AWS cloud resources and generates reports. Check out free hosted version:
Stars: ✭ 255 (-98.68%)
Awesome-Math-Learning📜 Collection of the most awesome Math learning resources in the form of notes, videos and cheatsheets.
Stars: ✭ 73 (-99.62%)
SharpLoader🔮 [C#] Source code randomizer and compiler
Stars: ✭ 36 (-99.81%)
laravel-markdownA highly configurable markdown renderer and Blade component for Laravel
Stars: ✭ 159 (-99.18%)
cppbestpracticesCollaborative Collection of C++ Best Practices. This online resource is part of Jason Turner's collection of C++ Best Practices resources. See README.md for more information.
Stars: ✭ 5,424 (-71.9%)
gfm-code-blocksExtract gfm (GitHub Flavored Markdown) fenced code blocks from a string.
Stars: ✭ 20 (-99.9%)
SecurecodeboxsecureCodeBox (SCB) - continuous secure delivery out of the box
Stars: ✭ 279 (-98.55%)
cheatcheat allows you to create and view interactive cheatsheets on the command-line. It was designed to help remind *nix system administrators of options for commands that they use frequently, but not frequently enough to remember.
Stars: ✭ 8,686 (-55%)
BCN3DSigma-FirmwareCustom Marlin version for the brand new BCN3D Sigma from BCN3D Technologies
Stars: ✭ 81 (-99.58%)
template-injection-workshopWorkshop on Template Injection (6 exercises) covering Twig, Jinja2, Tornado, Velocity and Freemaker engines.
Stars: ✭ 99 (-99.49%)
riblet-sampleA sample to represent Uber Riblets design pattern using Swift.
Stars: ✭ 42 (-99.78%)
vueCheatsheets for experienced Vue developers getting started with TypeScript
Stars: ✭ 190 (-99.02%)
specificationSoftware Bill of Material (SBOM) standard designed for use in application security contexts and supply chain component analysis
Stars: ✭ 129 (-99.33%)