Select a tag to browse associated projects and drill deeper into the tag cloud.
owasp-esapi-java
Claimed by Open Web Application Securi... Analyzed about 23 hours ago
OWASP ESAPI for Java: Strong, Simple Security Controls for Java Developers
Don’t write your own security controls! Reinventing the wheel when it comes to developing security controls for every web application or web service leads to wasted time and massive security holes. The OWASP Enterprise
Licenses:
bsd
Nikto
Analyzed about 11 hours ago
Nikto is an Open Source (GPL) web server scanner which performs comprehensive tests against web servers for multiple items, including over 3500 potentially dangerous files/CGIs, versions on over 900 servers, and version specific problems on over 250 servers. Scan items and plugins are frequently
owasp-esapi-php
O
Claimed by Open Web Application Securi... Analyzed 1 day ago
OWASP ESAPI for PHP: Strong, Simple Security Controls for PHP Developers
Don’t write your own security controls! Reinventing the wheel when it comes to developing security controls for every web application or web service leads to wasted time and massive security holes. The OWASP Enterprise
webappsec-nutshell
Analyzed 1 day ago
An ultra-compact intro (or refresher) to Web Application Security.
DevGuide
D
Claimed by Open Web Application Securi... Analyzed about 1 month ago
The OWASP Guide is for architects and developers to securely engineer applications, primarily focusing on modern web apps and mobile applications.
We are in the process of a massive re-write and are looking for contributors. Please come and help!
Licenses:
CC_Attrib...
OWASP phpsec
O
Claimed by Open Web Application Securi... Analyzed about 2 hours ago
OWASP PHP Security Project
OWASP PHP Security Project is an effort by a group of PHP developers in securing PHP web applications, using a collection of decoupled flexible secure PHP libraries, as well as a collection of PHP tools.
Licenses:
creativec...
OWASP WebGoatPHP
Claimed by Open Web Application Securi... Analyzed about 15 hours ago
WebGoatPHP is a deliberately insecure web application developed using PHP to teach web application security. It offers a set of challenges based on various vulnerabilities listed in OWASP. The application is a realistic teaching environment and supports four different modes.
Wiki Page: https://www.owasp.org/index.php/WebGoatPHP
Licenses:
apache_2
Stripes XSS Interceptor
Analyzed 1 day ago
Stripes XSS Interceptor escapes all the parameters that Stripes binds during its Validation & Binding phase using a wrapped request object (a convenient implementation of the HttpServletRequest interface). The code follows the XSS (Cross Site Scripting) security guidance posted at Open Web Application Security Project (OWASP).
Licenses:
apache_2
Perl-Critic-Policy-ValuesAndExpressions-PreventSQLInjection
Analyzed 1 day ago
PerlCritic policy that attempts to detect the most common sources of SQL injection in manually crafted SQL statements, by detecting the use of variables inside interpolated strings that look like SQL statements.