Select a tag to browse associated projects and drill deeper into the tag cloud.
OWASP AppSensor
Claimed by Open Web Application Securi... Analyzed 2 months ago
Enhance the defensive posture of an application by actively detecting attackers. Don't just wait for an attacker to find a weakness. Find the attacker first and shut them down.
The OWASP AppSensor project defines offers prescriptive guidance to implement intrusion detection and automated
Licenses:
bsd, mit
OWASP phpsec
O
Claimed by Open Web Application Securi... Analyzed 2 months ago
OWASP PHP Security Project
OWASP PHP Security Project is an effort by a group of PHP developers in securing PHP web applications, using a collection of decoupled flexible secure PHP libraries, as well as a collection of PHP tools.
Licenses:
creativec...
OWASP WebGoatPHP
Claimed by Open Web Application Securi... Analyzed 2 months ago
WebGoatPHP is a deliberately insecure web application developed using PHP to teach web application security. It offers a set of challenges based on various vulnerabilities listed in OWASP. The application is a realistic teaching environment and supports four different modes.
Wiki Page: https://www.owasp.org/index.php/WebGoatPHP
Licenses:
apache_2
OWASP Encoder Comparison Reference
O
Claimed by Open Web Application Securi... Analyzed 2 months ago
Libraries and frameworks encode ASCII characters differently. The OWASP Enterprise Security API (ESAPI) is the reference implementation for the most comprehensive and secure output encoding/escaping. Using this encoder comparison table, you will see how ESAPI exceeds other framework encoders and
Licenses:
No declared licenses
DevGuide
D
Claimed by Open Web Application Securi... Analyzed 4 months ago
The OWASP Guide is for architects and developers to securely engineer applications, primarily focusing on modern web apps and mobile applications.
We are in the process of a massive re-write and are looking for contributors. Please come and help!
Licenses:
CC_Attrib...
owasp-application-security-verification-standard
O
Analyzed 2 months ago
Application Security Verification Standard is the primary application security standard for developers, testers, and security professionals to build in and verify the security of code in any language or framework.
Licenses:
ccbysa3-0
NSIA
Analyzed 4 months ago
NSIA (Network System Integrity Analysis) is a web application monitoring system that scans web applications for potentially unwanted context such as defacements, unauthorized changes, errors, information leaks, profanity, compliance issues, etc.
Features:
* Attractive, simple user interface
*
Licenses:
No declared licenses
OWASP-Watiqay
O
Claimed by Open Web Application Securi... No analysis available
owasp watiqay: web application monitoring
Mostly written in language not available
Licenses:
gpl3
OWASP Java Encoder Project
Analyzed 2 months ago
Contextual Output Encoding is a computer programming technique necessary to stop Cross Site Scripting. This project is a Java 1.5+ simple-to-use drop-in high-performance encoder class with no dependencies and little baggage. It provides numerous encoding functions to help defend against XSS in a
Licenses:
No declared licenses
webappsec-nutshell
Analyzed 2 months ago
An ultra-compact intro (or refresher) to Web Application Security.