RepoGuard
BlogTentangMasuk
Diperbarui 2 h ago
OWASP

Organization

Jejak publik GitHub OWASP

@OWASP
Lihat profil di GitHub

The OWASP Foundation

United States of America

1.380

Repositori publik

105.235

Total bintang

11.354

Pengikut

OWASP memiliki kehadiran publik yang signifikan di GitHub, dengan banyak repositori yang berfokus pada keamanan aplikasi. Repositori utama seperti CheatSheetSeries dan mastg menyediakan panduan penting di bidang keamanan, menggunakan bahasa pemrograman seperti Python, HTML, dan Java. Dengan lebih dari seribu repositori, OWASP berkontribusi secara luas terhadap komunitas keamanan siber.

Bahasa teratas

HTML 42Python 24Java 7JavaScript 4TypeScript 3PHP 2Shell 2Go 1

Repositori publik

CheatSheetSeries

32.260

The OWASP Cheat Sheet Series was created to provide a concise collection of high value information on specific application security topics.

Python
Diperbarui 13 Jun 2026

mastg

12.967

The OWASP Mobile Application Security Testing Guide (MASTG) is a comprehensive manual for mobile app security testing and reverse engineering. It describes technical processes for verifying the OWASP Mobile Security Weakness Enumeration (MASWE) weaknesses, which are in alignment with the OWASP MASVS.

Python
Diperbarui 13 Jun 2026

wstg

9.463

The Web Security Testing Guide is a comprehensive Open Source guide to testing the security of web applications and web services.

Bahasa Tidak Dikenal
Diperbarui 13 Jun 2026

Top10

5.754

Official OWASP Top 10 Document Repository

HTML
Diperbarui 13 Jun 2026

Go-SCP

5.283

Golang Secure Coding Practices guide

Go
Diperbarui 13 Jun 2026

Nettacker

5.234

Automated Penetration Testing Framework - Open-Source Vulnerability Scanner - Vulnerability Management

Python
Diperbarui 12 Jun 2026

ASVS

3.459

Application Security Verification Standard

HTML
Diperbarui 13 Jun 2026

NodeGoat

2.048

The OWASP NodeGoat project provides an environment to learn how OWASP Top 10 security risks apply to web applications developed using Node.js and how to effectively address them.

HTML
Diperbarui 12 Jun 2026

QRLJacking

1.548

QRLJacking or Quick Response Code Login Jacking is a simple-but-nasty attack vector affecting all the applications that relays on “Login with QR code” feature as a secure way to login into accounts which aims for hijacking users session by attackers.

Python
Diperbarui 10 Jun 2026

crAPI

1.522

completely ridiculous API (crAPI)

Java
Diperbarui 13 Jun 2026

threat-dragon

1.492

An open source threat modeling tool from OWASP

JavaScript
Diperbarui 13 Jun 2026

SecurityShepherd

1.448

Web and mobile application security training platform

Java
Diperbarui 12 Jun 2026

wrongsecrets

1.446

Vulnerable app with examples showing how to not use secrets

Java
Diperbarui 12 Jun 2026

www-project-top-ten

1.403

OWASP Foundation Web Respository

HTML
Diperbarui 12 Jun 2026

www-community

1.366

OWASP Community Pages are a place where OWASP can accept community contributions for security-related content.

HTML
Diperbarui 13 Jun 2026

www-project-top-10-for-large-language-model-applications

1.292

OWASP Top 10 for Large Language Model Apps (Part of the GenAI Security Project)

Python
Diperbarui 13 Jun 2026

joomscan

1.189

OWASP Joomla Vulnerability Scanner Project https://www.secologist.com/

Raku
Diperbarui 11 Jun 2026

pytm

1.128

A Pythonic framework for threat modeling

Python
Diperbarui 13 Jun 2026

DevSecOpsGuideline

1.067

The OWASP DevSecOps Guideline can help us to embedding security as a part of the development pipeline.

Python
Diperbarui 13 Jun 2026

java-html-sanitizer

943

Takes third-party HTML and produces HTML that is safe to embed in your web application. Fast and easy to configure.

Java
Diperbarui 12 Jun 2026

railsgoat

922

A vulnerable version of Rails that follows the OWASP Top 10

HTML
Diperbarui 11 Jun 2026

www-project-ai-testing-guide

716

OWASP Foundation web repository

Python
Diperbarui 13 Jun 2026

MASTG-Hacking-Playground

682

Tidak ada deskripsi yang diberikan untuk repositori ini.

Java
Diperbarui 13 Jun 2026

APTS

670

OWASP Autonomous Penetration Testing Standard

Python
Diperbarui 13 Jun 2026

OFFAT

660

The OWASP OFFAT tool autonomously assesses your API for prevalent vulnerabilities, though full compatibility with OAS v3 is pending. The project remains a work in progress, continuously evolving towards completion.

Python
Diperbarui 12 Jun 2026

owasp.github.io

652

OWASP Foundation main site repository

HTML
Diperbarui 13 Jun 2026

www-project-kubernetes-top-ten

615

OWASP Foundation Web Respository

HTML
Diperbarui 12 Jun 2026

OWASP-WebScarab

613

OWASP WebScarab

Java
Diperbarui 10 Jun 2026

www-project-web-security-testing-guide

587

The Web Security Testing Guide (WSTG) Project produces the premier cybersecurity testing resource for web application developers and security professionals.

HTML
Diperbarui 12 Jun 2026

DVSA

545

a Damn Vulnerable Serverless Application

JavaScript
Diperbarui 9 Jun 2026

cve-lite-cli

537

Fast, developer-friendly JS/TS dependency vulnerability scanner with local lockfile scanning, OSV matching, direct vs transitive visibility, --fix, JSON output, and practical remediation guidance.

TypeScript
Diperbarui 13 Jun 2026

Python-Honeypot

477

OWASP Honeypot, Automated Deception Framework.

Python
Diperbarui 10 Jun 2026

iGoat-Swift

452

OWASP iGoat (Swift) - A Damn Vulnerable Swift Application for iOS

C
Diperbarui 12 Jun 2026

DockSec

426

AI-powered Docker security scanner that explains vulnerabilities in plain English. An OWASP Incubator Project.

Python
Diperbarui 12 Jun 2026

Vulnerable-Web-Application

416

OWASP Vulnerable Web Application Project https://github.com/hummingbirdscyber

PHP
Diperbarui 11 Jun 2026

Nest

410

Your gateway to OWASP. Discover, engage, and help shape the future!

Python
Diperbarui 13 Jun 2026

www-project-ai-security-and-privacy-guide

392

OWASP Foundation Web Respository

HTML
Diperbarui 12 Jun 2026

www-chapter-japan

235

OWASP Foundation Web Respository

HTML
Diperbarui 13 Jun 2026

AISVS

177

The AI Security Verification Standard (AISVS) focuses on providing developers, architects, and security professionals with a structured checklist to verify the security of AI-driven applications.

Bahasa Tidak Dikenal
Diperbarui 13 Jun 2026

www-project-proactive-controls

174

OWASP Foundation Web Respository

Shell
Diperbarui 9 Jun 2026

OpenCRE

159

Tidak ada deskripsi yang diberikan untuk repositori ini.

Python
Diperbarui 12 Jun 2026

OWASPWebGoatPHP

155

A deliberately vulnerable web application for learning web application security.

PHP
Diperbarui 10 Jun 2026

IoT-Security-Verification-Standard-ISVS

152

OWASP IoT Security Verification Standard (ISVS)

TeX
Diperbarui 13 Jun 2026

cornucopia

132

The source files and tools needed to build the OWASP Cornucopia decks in various languages

Python
Diperbarui 11 Jun 2026

owasp-istg

125

The IoT Security Testing Guide (ISTG) provides a comprehensive methodology for penetration tests in the IoT field, offering flexibility to adapt innovations, and developments in the IoT market while still ensuring comparability of test results.

Python
Diperbarui 13 Jun 2026

www-project-mobile-top-10

120

Tidak ada deskripsi yang diberikan untuk repositori ini.

HTML
Diperbarui 12 Jun 2026

www-project-zap

109

OWASP Zed Attack Proxy project landing page.

HTML
Diperbarui 9 Jun 2026

Honeypot-Project

107

Tidak ada deskripsi yang diberikan untuk repositori ini.

Python
Diperbarui 9 Jun 2026

www-project-juice-shop

102

OWASP Foundation Web Respository

HTML
Diperbarui 12 Jun 2026

www-project-agentic-skills-top-10

99

OWASP Foundation web repository

HTML
Diperbarui 10 Jun 2026

secure-agent-playbook

92

OWASP Secure Agent Playbook Project

Python
Diperbarui 11 Jun 2026

www-project-application-security-verification-standard

91

OWASP Foundation Web Respository

HTML
Diperbarui 13 Jun 2026

www-project-it-grc

83

OWASP Foundation Web Respository

Python
Diperbarui 13 Jun 2026

www-project-mcp-top-10

79

OWASP MCP Top10

HTML
Diperbarui 11 Jun 2026

www-project-citizen-development-top10-security-risks

75

OWASP Citizen Development Top 10

HTML
Diperbarui 12 Jun 2026

www-project-smart-contract-top-10

75

OWASP Smart Contract Top 10

HTML
Diperbarui 11 Jun 2026

threat-dragon-desktop

75

Desktop variant of OWASP Threat Dragon

Bahasa Tidak Dikenal
Diperbarui 9 Jun 2026

wrongsecrets-ctf-party

55

Run Capture the Flags and Security Trainings with OWASP WrongSecrets

JavaScript
Diperbarui 12 Jun 2026

PwnzzAI

55

Tidak ada deskripsi yang diberikan untuk repositori ini.

HTML
Diperbarui 11 Jun 2026

www-project-devsecops-verification-standard

54

OWASP Foundation Web Respository

JavaScript
Diperbarui 9 Jun 2026

owasp-scs

47

OWASP Smart Contract Security (SCS) Project

Bahasa Tidak Dikenal
Diperbarui 11 Jun 2026

www-project-agent-memory-guard

45

OWASP Foundation web repository

Python
Diperbarui 13 Jun 2026

www-project-modsecurity-core-rule-set

45

OWASP Foundation Web Respository

HTML
Diperbarui 9 Jun 2026

www-project-non-human-identities-top-10

44

OWASP Non-Human Identities Top 10

HTML
Diperbarui 9 Jun 2026

owasp-cstg

35

Tidak ada deskripsi yang diberikan untuk repositori ini.

Bahasa Tidak Dikenal
Diperbarui 13 Jun 2026

maswe

31

The Mobile Application Security Weakness Enumeration (MASWE) is a list of common security and privacy weaknesses in mobile apps. It is intended to be used as a reference for developers, security researchers, and security professionals. It acts as the bridge between the OWASP MASVS and the MASTG.

Bahasa Tidak Dikenal
Diperbarui 12 Jun 2026

TCASVS

28

OWASP Thick Client Application Security Verification Standard

Python
Diperbarui 11 Jun 2026

OCSD

27

OWASP Certified Secure-Software Developer

Bahasa Tidak Dikenal
Diperbarui 13 Jun 2026

www-project-api-security-testing-framework

27

OWASP Foundation web repository

Java
Diperbarui 10 Jun 2026

www-project-threat-modeling

25

OWASP Foundation Web Respository

Ruby
Diperbarui 11 Jun 2026

www-project-operational-technology-top-10

25

OWASP Foundation web repository

HTML
Diperbarui 11 Jun 2026

german-owasp-day

24

German OWASP Day conference site & presentation archive

HTML
Diperbarui 11 Jun 2026

www-project-promptme

23

PromptMe is an educational project that showcases security vulnerabilities in large language models (LLMs) and their web integrations. It includes 10 hands-on challenges inspired by the OWASP LLM Top 10, demonstrating how these vulnerabilities can be discovered and exploited in real-world scenarios.

Python
Diperbarui 10 Jun 2026

www-project-pytm

21

OWASP Foundation Web Respository

HTML
Diperbarui 12 Jun 2026

quantum-security-project

11

Tidak ada deskripsi yang diberikan untuk repositori ini.

Bahasa Tidak Dikenal
Diperbarui 13 Jun 2026

wrongsecrets-binaries

11

Source code for the Binaries of OWASP WrongSecrets

Shell
Diperbarui 12 Jun 2026

www-project-iot-security-testing-guide

10

OWASP IoT Security Testing Guide site repository

HTML
Diperbarui 13 Jun 2026

FIASSE

8

A Framework for Integrating Application Security into Software Engineering (FIASSE) using the Securable Software Engineering Model (SSEM)

Python
Diperbarui 12 Jun 2026

DonkAI

8

DonkAI is a hands-on lab for the OWASP Top 10 for LLM Applications (2025) - no real LLM required.

Python
Diperbarui 9 Jun 2026

www-project-artificial-intelligence-security-verification-standard-aisvs-docs

7

OWASP Foundation web repository

HTML
Diperbarui 13 Jun 2026

www-chapter-jis-university-student-chapter

7

OWASP Foundation web repository

HTML
Diperbarui 11 Jun 2026

www-project-dungeons-and-daemons

7

This repository contains OWASP Dungeons & Daemons a collection of security games. It's purpose is to promote security awareness and practices.

Svelte
Diperbarui 8 Jun 2026

www-project-dragon-gpt

6

OWASP Foundation Web Respository

HTML
Diperbarui 11 Jun 2026

www-chapter-nagoya

5

OWASP Foundation Web Respository

HTML
Diperbarui 10 Jun 2026

www-project-top-10-for-business-logic-abuse

5

OWASP Foundation web repository

HTML
Diperbarui 9 Jun 2026

www-chapter-ottawa

5

OWASP Foundation Web Repository for the Ottawa Ontario Chapter

HTML
Diperbarui 8 Jun 2026

GitHub-Workflow-Updater-Extension

4

Pin your github actions, from withi vscod (and forks)

TypeScript
Diperbarui 13 Jun 2026

MOSAIC

4

Tidak ada deskripsi yang diberikan untuk repositori ini.

CSS
Diperbarui 10 Jun 2026

www-chapter-cologne

4

OWASP Foundation web repository

HTML
Diperbarui 10 Jun 2026

appsec-agent

4

A TypeScript package that provides AI-powered agents for Application Security (AppSec) tasks, built on top of the Claude Agent SDK.

TypeScript
Diperbarui 9 Jun 2026

www-chapter-austin

4

OWASP Foundation Web Respository

HTML
Diperbarui 8 Jun 2026

www-chapter-dhaka

3

OWASP Foundation Web Respository

HTML
Diperbarui 12 Jun 2026

www-chapter-national-institute-of-engineering-mysuru

3

OWASP Foundation Web Respository

HTML
Diperbarui 10 Jun 2026

www-chapter-buenos-aires

2

OWASP Foundation Web Respository

HTML
Diperbarui 12 Jun 2026

www-chapter-innsbruck

2

OWASP Foundation web repository

HTML
Diperbarui 12 Jun 2026

www-chapter-bristol-uk

1

OWASP Foundation Bristol UK chapter

HTML
Diperbarui 12 Jun 2026

www-project-vulnerable-ai-factory

1

OWASP Foundation web repository

HTML
Diperbarui 12 Jun 2026

MCP-Security-Testing-Guide

1

Tidak ada deskripsi yang diberikan untuk repositori ini.

Bahasa Tidak Dikenal
Diperbarui 11 Jun 2026

www-chapter-brisbane

1

OWASP Foundation Web Respository

HTML
Diperbarui 10 Jun 2026

www-chapter-heilbronn

0

OWASP Foundation web repository

HTML
Diperbarui 10 Jun 2026

Pertanyaan yang sering diajukan

Apa yang dibangun OWASP di GitHub?

OWASP membangun berbagai repositori yang fokus pada keamanan aplikasi, termasuk CheatSheetSeries dan mastg. Repositori ini menyediakan panduan dan berbagai alat untuk membantu pengembang dan profesional keamanan dalam mengidentifikasi dan mengatasi kerentanan.

Bahasa pemrograman apa yang digunakan OWASP?

OWASP menggunakan beberapa bahasa pemrograman dalam repositorinya, termasuk Python, HTML, Java, JavaScript, TypeScript, dan C. Penggunaan bahasa ini mencerminkan kebutuhan beragam dalam pengembangan alat dan panduan keamanan.

Apakah repositori OWASP bersifat publik?

Ya, semua repositori OWASP di GitHub bersifat publik. Ini memungkinkan siapa saja untuk mengakses, menggunakan, dan berkontribusi pada proyek-proyek yang berkaitan dengan keamanan aplikasi, mendukung kolaborasi di komunitas keamanan siber.

Apakah paparan ini dimaksudkan?

Pantau OWASP dengan RepoGuard dan dapatkan pemberitahuan saat repositori publik baru muncul.

Pantau akun ini