The Web Security Testing Guide is a comprehensive Open Source guide to testing the security of web applications and web services.

The Web Security Testing Guide (WSTG) Project produces the premier cybersecurity testing resource for web application developers and security professionals.

The OWASP Secure Headers Project

OWASP Community Pages are a place where OWASP can accept community contributions for security-related content.

German OWASP Day conference site & presentation archive

OWASP dependency-check is a software composition analysis utility that detects publicly disclosed vulnerabilities in application dependencies.

A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.

List of awesome penetration testing resources, tools and other shiny things

Automatic SQL injection and database takeover tool

Code Review Audit Script Scanner

Control your Sony Bravia TV using nodejs

Server side TLS Tools

Autopsy® is a digital forensics platform and graphical interface to The Sleuth Kit® and other digital forensics tools. It can be used by law enforcement, military, and corporate examiners to invest…

Burp Suite extension to passively scan for applications revealing server error messages

A collection of android security related resources

Official OWASP Top 10 Document Repository

SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, se…

Application Security Verification Standard

Writes data from fritzbox to influxdb

Nikto web server scanner

Check for certs affected by July 2020 OCSP intermediate incident

OWASP Foundation main site repository