Open-Source Unified Vulnerability Management, DevSecOps & ASPM
8 Lessons, Kick-start Your Cybersecurity Learning.
OWASP Community Pages are a place where OWASP can accept community contributions for security-related content.
A vulnerable version of Rails that follows the OWASP Top 10
ZAP Add-ons
vAPI is Vulnerable Adversely Programmed Interface which is Self-Hostable API that mimics OWASP API Top 10 scenarios through Exercises.
OWASP BLT - Bug Logging Tools
The source of ZAP website
OWASP Zed Attack Proxy project landing page.
In progress rough solutions to bWAPP / bee-box
The OWASP Vulnerable Web Applications Directory Project (VWAD) is a comprehensive and well maintained registry of all known vulnerable web applications currently available.
OWASP Code Review Guide Web Repository
Integrates OWASP Zed Attack Proxy reports into SonarQube
OWASP Foundation Threat Dragon Project Web Repository
OWASP Citizen Development Top 10
Welcome to our presentation on DevSecOps! In this talk we will uncover the benefits, challenges, and best practices of introducing security into your software development lifecycle (SDLC). DevSecOps from Zero to Hero! - devopsdays Montréal 2024 DevSecOps from Zero to Hero!
OWASP Foundation Web Repository for the Ottawa Ontario Chapter
Add a description, image, and links to the appsec topic page so that developers can more easily learn about it.
To associate your repository with the appsec topic, visit your repo's landing page and select "manage topics."