8 Lessons, Kick-start Your Cybersecurity Learning.
DevSecOps, ASPM, Vulnerability Management. All on one platform.
vAPI is Vulnerable Adversely Programmed Interface which is Self-Hostable API that mimics OWASP API Top 10 scenarios through Exercises.
OWASP Community Pages are a place where OWASP can accept community contributions for security-related content.
A vulnerable version of Rails that follows the OWASP Top 10
ZAP Add-ons
In progress rough solutions to bWAPP / bee-box
OWASP BLT is tool with the purpose of making the web a safer place. We have many facets to the project.
OWASP Code Review Guide Web Repository
OWASP Zed Attack Proxy project landing page.
OWASP Foundation Threat Dragon Project Web Repository
Integrates OWASP Zed Attack Proxy reports into SonarQube
OWASP Low-Code/No-Code Top 10
The OWASP Vulnerable Web Applications Directory Project (VWAD) is a comprehensive and well maintained registry of all known vulnerable web applications currently available.
OWASP SecureFlag Open Platform
Add a description, image, and links to the appsec topic page so that developers can more easily learn about it.
To associate your repository with the appsec topic, visit your repo's landing page and select "manage topics."