OWASP - Open Web Application Security Project

OWASP is an open-source community project turned non-profit organization that provides unbiased and practical, cost-effective information about computer and Internet applications.


It helps organizations develop, purchase, and maintain software applications that can be trusted and knowledge-based documentation for Web application security. Some projects include: A guide to define security requirements to build secure Web applications; Developing an industry standard testing framework for Web application security;  VulnXML - A standard data exchange format to allow commercial, open source and research tools to communicate and interoperate; Web Scarab - An open source enterprise-level Web application scanner; Developing a component-based approach to filtering malicious input and output to a Web application; and Web Maven - An intentionally insecure Internet bank users can download and learn from. All project software and documentation is released under the GNU GPL, and the project is staffed entirely of volunteers.


Seeking Clarity?

View the Cybersecurity Dictionary for top terms searched by your peers.