Clear ×

Owasp

29 repositories found

CyberStrikeus

CyberStrikeus

CyberStrike
TypeScript Rising Star AI analysis

CyberStrike is an open-source AI-powered offensive security agent that automates penetration testing by integrating with LLMs (Claude, GPT, etc.) to...

Production ready Niche use case
ai ai-agent appsec
1.2k
192
18
87/wk
active
7/10 Security
microsoft

microsoft

agent-governance-toolkit
Python Rising Star AI analysis

The Agent Governance Toolkit is a Python library providing policy enforcement, zero-trust identity, execution sandboxing, and reliability engineering...

Production ready Niche use case
agent-framework ai-agents ai-safety
4.7k
720
104
128/wk
active
8/10 AI & ML
corazawaf

corazawaf

coraza
Go AI analysis

Coraza is an open-source Web Application Firewall library written in Go that provides ModSecurity-compatible rule processing and 100% compatibility...

Production ready Niche use case
coraza coraza-waf coreruleset
3.6k
333
106
33/wk
active
8/10 Security
OWASP

OWASP

Nettacker
Python AI analysis

OWASP Nettacker is a Python-based automated penetration testing and vulnerability scanning framework that helps security professionals conduct...

Production ready Niche use case
automation bruteforce cve
5.3k
1.1k
237
18/wk
active
7/10 Security
MobSF

MobSF

Mobile-Security-Framework-MobSF
JavaScript AI analysis

Mobile Security Framework (MobSF) is a specialized automated platform for static and dynamic analysis of mobile applications across Android, iOS, and...

Production ready Niche use case
android-security api-testing apk
21.4k
3.7k
21
68/wk
active
8/10 Security
DefectDojo

DefectDojo

django-DefectDojo
HTML AI analysis

DefectDojo is a comprehensive DevSecOps and vulnerability management platform that orchestrates security testing, deduplication, remediation, and...

Production ready Niche use case
analytics appsec automation
4.8k
1.9k
238
29/wk
active
8/10 Security
cdxgen

cdxgen

cdxgen
JavaScript AI analysis

cdxgen is a CLI tool and library that generates software bills of materials (SBOMs) in CycloneDX and SPDX formats, supporting multiple languages,...

Production ready Niche use case
bom cbom containers
1k
254
434
6/wk
active
8/10 DevOps
DependencyTrack

DependencyTrack

dependency-track
Java AI analysis

Dependency-Track is an OWASP-maintained Component Analysis platform that ingests Software Bill of Materials (SBOMs) to identify and mitigate supply...

Production ready Niche use case
appsec bill-of-materials bom
4k
775
1k
21/wk
active
8/10 Security
daveshanley

daveshanley

vacuum
Go AI analysis

vacuum is a high-performance linter and validator for OpenAPI, AsyncAPI, and JSON Schema specifications, written in Go. It specializes in fast API...

Production ready Single maintainer Niche use case
go golang json-schema
1.1k
86
16
4/wk
active
8/10 DevOps
coreruleset

coreruleset

coreruleset
Python AI analysis

OWASP CRS is a specialized ruleset for web application firewalls (ModSecurity, Coraza, and compatible WAFs) that detects and blocks common web...

Production ready Niche use case
crs owasp ruleset
3.2k
460
112
11/wk
active
8/10 Security
OWASP

OWASP

threat-dragon
JavaScript AI analysis

OWASP Threat Dragon is a free, open-source threat modeling application that enables users to draw data flow diagrams and document threats with...

Production ready Niche use case
owasp owasp-threat-dragon sdlc
1.5k
386
115
5/wk
active
7/10 Security
Bearer

Bearer

bearer
Go AI analysis

Bearer is an open-source static application security testing (SAST) tool that scans source code to identify security vulnerabilities and privacy...

Production ready Niche use case
appsec code-quality compliance
2.7k
141
27
8/wk
active
7/10 Security
OWASP

OWASP

CheatSheetSeries
Python AI analysis

The OWASP Cheat Sheet Series is a curated collection of concise, high-value security guidance organized by application security topic, designed to...

Production ready Beginner friendly Niche use case
application-security appsec best-practices
32.5k
4.5k
43
88/wk +31 yesterday
active
9/10 Security
webpwnized

webpwnized

mutillidae
PHP AI analysis

OWASP Mutillidae II is a deliberately vulnerable web application designed as a training target for learning web security through hands-on practice....

Beginner friendly Niche use case
application appsec cybersecurity
1.5k
561
1
4/wk
recent
7/10 Security
vitalysim

vitalysim

Awesome-Hacking-Resources
AI analysis

Awesome Hacking Resources is a curated index repository collecting links to learning materials, tools, and references for penetration testing,...

Beginner friendly Niche use case
buffer-overflow ctf exploit
17.2k
2.2k
24
41/wk
slow
7/10 Security
Safe3

Safe3

uusec-waf
Shell AI analysis

UUSEC WAF is an industrial-grade, free web application firewall and API security gateway that combines traditional WAF capabilities with AI-based...

Production ready Niche use case
api-gateway api-security application-security
1.7k
168
83
4/wk
active
7/10 Security
OWASP

OWASP

wstg
AI analysis

The OWASP Web Security Testing Guide (WSTG) is a comprehensive, open-source framework for testing web application security, actively maintained as a...

Production ready Beginner friendly Niche use case
application-security appsec best-practices
9.6k
1.6k
41
21/wk
recent
8/10 Security
juice-shop

juice-shop

juice-shop
TypeScript AI analysis

OWASP Juice Shop is an intentionally vulnerable web application designed for security training, CTF competitions, and penetration testing practice....

Beginner friendly Niche use case
application-security appsec ctf
13.5k
18.6k
4
28/wk
active
8/10 Security
yeswehack

yeswehack

vulnerable-code-snippets
PHP AI analysis

A curated collection of vulnerable PHP code snippets with Docker environments for practicing security code analysis and identifying common web...

Beginner friendly Niche use case
bugbounty code code-analyze
1.2k
209
1
2/wk
slow
7/10 Security
infoslack

infoslack

awesome-web-hacking
AI analysis

A curated list of resources for web application security education and penetration testing, including books, documentation, tools, cheat sheets,...

Beginner friendly Single maintainer Niche use case
appsec hacking hacking-tools
7k
1.3k
7
11/wk
active
7/10 Security
OWASP

OWASP

crAPI
Java AI analysis

crAPI is a deliberately vulnerable microservices-based API application designed for security education and training, specifically to teach the OWASP...

Beginner friendly Niche use case
api apisecurity hacktoberfest
1.5k
595
30
7/wk
slow
7/10 Security
OWASP

OWASP

wrongsecrets
Java AI analysis

OWASP WrongSecrets is a deliberately vulnerable Java web application designed as a training tool for learning secrets management security. It...

Beginner friendly Niche use case
aws azure ctf
1.4k
589
28
1/wk
active
8/10 Security
OWASP

OWASP

DevSecOpsGuideline
Python AI analysis

The OWASP DevSecOps Guideline is a reference framework and documentation project that helps organizations embed security practices into their CI/CD...

Beginner friendly Niche use case
devsecops owasp security
1.1k
252
13
recent
7/10 Security
phongnguyend

phongnguyend

Practical.CleanArchitecture
C# AI analysis

A comprehensive educational and reference repository demonstrating full-stack .NET clean architecture patterns across multiple deployment topologies...

Single maintainer Niche use case
angular aws azure
2.4k
607
41
recent
7/10 Dev Tools
urbanadventurer

urbanadventurer

WhatWeb
Ruby AI analysis

WhatWeb is a web scanner that identifies websites and their underlying technologies—CMS platforms, web servers, JavaScript libraries, version...

Production ready Single maintainer Niche use case
application-security appsec hacking
6.7k
998
51
14/wk
slow
8/10 Security
owasp-amass

owasp-amass

amass
Go AI analysis

OWASP Amass is a specialized attack surface mapping and external asset discovery tool that performs network reconnaissance through open source...

Production ready Niche use case
attack-surfaces dns enumeration
14.8k
2.1k
231
26/wk
slow
8/10 Security
madhuakula

madhuakula

kubernetes-goat
HTML AI analysis

Kubernetes Goat is a deliberately vulnerable Kubernetes cluster environment designed for hands-on security training and penetration testing practice....

Beginner friendly Single maintainer Niche use case
blueteam cloud-native cloud-security
5.7k
1k
28
10/wk
slow
7/10 Security
find-sec-bugs

find-sec-bugs

find-sec-bugs
Java AI analysis

Find Security Bugs is a SpotBugs plugin that performs static security analysis on Java, Kotlin, Groovy, and Scala codebases, detecting common...

Production ready Niche use case
bytecode code-analysis cwe
2.4k
484
115
slow
7/10 Security
openappsec

openappsec

openappsec
C++ AI analysis

open-appsec is a machine learning-powered Web Application Firewall (WAF) that detects and prevents threats against web applications and APIs by...

Production ready Niche use case
api-security application-security appsec
1.6k
126
32
slow
7/10 Security