OWASP

OWASP
	File:OWASP black logo.svg
	Lua error in Module:Infobox_mapframe at line 197: attempt to index field 'wikibase' (a nil value).
Founded	2001
Founders	Mark Curphey
Type	501(c)(3) nonprofit organization
Purpose	Web security, application security, vulnerability assessment
Method	Industry standards, conferences, workshops
Membership	approx. 13,000 volunteers (2017)
Key people	Andrew van der Stock, Executive Director; Kelly Santalucia, Director of Events and Corporate Support; Harold Blankenship, Director of Technology and Projects; Jason C. McDonald, Director of Community Development; Dawn Aitken, Operations Manager; Lauren Thomas, Event Coordinator
Revenue	Decrease $2.3 million (2017)
Website	owasp.org

OWASP, the Open Worldwide Application Security Project (formerly Open Web Application Security Project), is an online community that publishes open-source information and resources on IoT, system software and web application security.^[5] It is led by a non-profit called The OWASP Foundation.

History

Mark Curphey started OWASP on September 9, 2001.^[1] Jeff Williams served as the volunteer Chair of OWASP from late 2003 until September 2011. As of 2015^[update], Matt Konda chaired the Board.^[6] The OWASP Foundation, a 501(c)(3) non-profit organization in the US established in 2004, supports the OWASP infrastructure and projects. Since 2011, OWASP is also registered as a non-profit organization in Belgium under the name of OWASP Europe VZW.^[7] In February 2023, it was reported by Bil Corry, a OWASP Foundation Global Board of Directors officer,^[8] on Twitter that the board had voted for renaming from the Open Web Application Security Project to its current name, replacing Web with Worldwide.^[9] In May 2023, the OWASP Gen AI Security Project was started to expand the scope of the OWASP Top 10 List to document the most critical risks associated with LLMs. ^[10]

Resources

Tools

OWASP ZAP: a penetration testing tool.
Webgoat: a deliberately insecure web application created by OWASP as a guide for secure programming practices.^[1]

Publications

OWASP Top Ten
- The "Top Ten", first published in 2003, is an annual listing of critical application security risks.^[11]^[12]^[13]^[14]^[15] Many standards, books, tools, and many organizations reference the Top 10 project, including MITRE, PCI DSS,^[16] the Defense Information Systems Agency (DISA-STIG), and the United States Federal Trade Commission.^[17]^[18]
OWASP Development Guide
OWASP Testing Guide
OWASP Code Review Guide
OWASP Top 10 Incident Response Guidance.^[19]

Models and standards

OWASP Software Assurance Maturity Model^[20]
OWASP Application Security Verification Standard (ASVS): A standard for performing application-level security verifications.^[21]

Other projects

OWASP XML Security Gateway (XSG) Evaluation Criteria Project.^[22]
OWASP AppSec Pipeline^[23]
OWASP Automated Threats to Web Applications^[24]^[25]
OWASP API Security Project^[26]
OWASP AI Maturity Assessment Project (AIMA)^[27]

Certifications

They also have several certification schemes.^[28]^[29]^[30]

Awards

The OWASP organization received the 2014 Haymarket Media Group SC Magazine Editor's Choice award.^[31]^[32]

References

^ ^a ^b ^c ^d Lua error in Module:Citation/CS1/Configuration at line 2172: attempt to index field '?' (a nil value).
^ Lua error in Module:Citation/CS1/Configuration at line 2172: attempt to index field '?' (a nil value).
^ Lua error in Module:Citation/CS1/Configuration at line 2172: attempt to index field '?' (a nil value).
^ Lua error in Module:Citation/CS1/Configuration at line 2172: attempt to index field '?' (a nil value).
^ Lua error in Module:Citation/CS1/Configuration at line 2172: attempt to index field '?' (a nil value).
^ Lua error in Module:Citation/CS1/Configuration at line 2172: attempt to index field '?' (a nil value).
^ Lua error in Module:Citation/CS1/Configuration at line 2172: attempt to index field '?' (a nil value).
^ Lua error in Module:Citation/CS1/Configuration at line 2172: attempt to index field '?' (a nil value).
^ Lua error in Module:Citation/CS1/Configuration at line 2172: attempt to index field '?' (a nil value).
^ Lua error in Module:Citation/CS1/Configuration at line 2172: attempt to index field '?' (a nil value).
^ Lua error in Module:Citation/CS1/Configuration at line 2172: attempt to index field '?' (a nil value).
^ Lua error in Module:Citation/CS1/Configuration at line 2172: attempt to index field '?' (a nil value).
^ Lua error in Module:Citation/CS1/Configuration at line 2172: attempt to index field '?' (a nil value).
^ Lua error in Module:Citation/CS1/Configuration at line 2172: attempt to index field '?' (a nil value).
^ Lua error in Module:Citation/CS1/Configuration at line 2172: attempt to index field '?' (a nil value).
^ Lua error in Module:Citation/CS1/Configuration at line 2172: attempt to index field '?' (a nil value).
^ Lua error in Module:Citation/CS1/Configuration at line 2172: attempt to index field '?' (a nil value).
^ Lua error in Module:Citation/CS1/Configuration at line 2172: attempt to index field '?' (a nil value).
^ Lua error in Module:Citation/CS1/Configuration at line 2172: attempt to index field '?' (a nil value).
^ Lua error in Module:Citation/CS1/Configuration at line 2172: attempt to index field '?' (a nil value).
^ Lua error in Module:Citation/CS1/Configuration at line 2172: attempt to index field '?' (a nil value).
^ Lua error in Module:Citation/CS1/Configuration at line 2172: attempt to index field '?' (a nil value).
^ Lua error in Module:Citation/CS1/Configuration at line 2172: attempt to index field '?' (a nil value).
^ Lua error in Module:Citation/CS1/Configuration at line 2172: attempt to index field '?' (a nil value).
^ Lua error in Module:Citation/CS1/Configuration at line 2172: attempt to index field '?' (a nil value).
^ Lua error in Module:Citation/CS1/Configuration at line 2172: attempt to index field '?' (a nil value).
^ Lua error in Module:Citation/CS1/Configuration at line 2172: attempt to index field '?' (a nil value).
^ Lua error in Module:Citation/CS1/Configuration at line 2172: attempt to index field '?' (a nil value).
^ Lua error in Module:Citation/CS1/Configuration at line 2172: attempt to index field '?' (a nil value).
^ Lua error in Module:Citation/CS1/Configuration at line 2172: attempt to index field '?' (a nil value).
^ Lua error in Module:Citation/CS1/Configuration at line 2172: attempt to index field '?' (a nil value).
^ Lua error in Module:Citation/CS1/Configuration at line 2172: attempt to index field '?' (a nil value).

External links

Official website

Lua error in Module:Authority_control at line 153: attempt to index field 'wikibase' (a nil value).

[ICSH-1] Lua error in Module:Citation/CS1/Configuration at line 2172: attempt to index field '?' (a nil value).

[owasp-staff-2] Lua error in Module:Citation/CS1/Configuration at line 2172: attempt to index field '?' (a nil value).

[nonprofit-explorer-3] Lua error in Module:Citation/CS1/Configuration at line 2172: attempt to index field '?' (a nil value).

[nonprofit-explorer-full-2017-4] Lua error in Module:Citation/CS1/Configuration at line 2172: attempt to index field '?' (a nil value).

[5] Lua error in Module:Citation/CS1/Configuration at line 2172: attempt to index field '?' (a nil value).

[6] Lua error in Module:Citation/CS1/Configuration at line 2172: attempt to index field '?' (a nil value).

[7] Lua error in Module:Citation/CS1/Configuration at line 2172: attempt to index field '?' (a nil value).

[8] Lua error in Module:Citation/CS1/Configuration at line 2172: attempt to index field '?' (a nil value).

[namechangetweet-9] Lua error in Module:Citation/CS1/Configuration at line 2172: attempt to index field '?' (a nil value).

[10] Lua error in Module:Citation/CS1/Configuration at line 2172: attempt to index field '?' (a nil value).

[11] Lua error in Module:Citation/CS1/Configuration at line 2172: attempt to index field '?' (a nil value).

[12] Lua error in Module:Citation/CS1/Configuration at line 2172: attempt to index field '?' (a nil value).

[13] Lua error in Module:Citation/CS1/Configuration at line 2172: attempt to index field '?' (a nil value).

[14] Lua error in Module:Citation/CS1/Configuration at line 2172: attempt to index field '?' (a nil value).

[15] Lua error in Module:Citation/CS1/Configuration at line 2172: attempt to index field '?' (a nil value).

[16] Lua error in Module:Citation/CS1/Configuration at line 2172: attempt to index field '?' (a nil value).

[17] Lua error in Module:Citation/CS1/Configuration at line 2172: attempt to index field '?' (a nil value).

[18] Lua error in Module:Citation/CS1/Configuration at line 2172: attempt to index field '?' (a nil value).

[19] Lua error in Module:Citation/CS1/Configuration at line 2172: attempt to index field '?' (a nil value).

[20] Lua error in Module:Citation/CS1/Configuration at line 2172: attempt to index field '?' (a nil value).

[21] Lua error in Module:Citation/CS1/Configuration at line 2172: attempt to index field '?' (a nil value).

[22] Lua error in Module:Citation/CS1/Configuration at line 2172: attempt to index field '?' (a nil value).

[23] Lua error in Module:Citation/CS1/Configuration at line 2172: attempt to index field '?' (a nil value).

[24] Lua error in Module:Citation/CS1/Configuration at line 2172: attempt to index field '?' (a nil value).

[25] Lua error in Module:Citation/CS1/Configuration at line 2172: attempt to index field '?' (a nil value).

[26] Lua error in Module:Citation/CS1/Configuration at line 2172: attempt to index field '?' (a nil value).

[27] Lua error in Module:Citation/CS1/Configuration at line 2172: attempt to index field '?' (a nil value).

[28] Lua error in Module:Citation/CS1/Configuration at line 2172: attempt to index field '?' (a nil value).

[29] Lua error in Module:Citation/CS1/Configuration at line 2172: attempt to index field '?' (a nil value).

[30] Lua error in Module:Citation/CS1/Configuration at line 2172: attempt to index field '?' (a nil value).

[SCmag14-31] Lua error in Module:Citation/CS1/Configuration at line 2172: attempt to index field '?' (a nil value).

[32] Lua error in Module:Citation/CS1/Configuration at line 2172: attempt to index field '?' (a nil value).

[1]

[4]

[2]

[3]

[5]

[6]

[7]

[8]

[9]

[10]

[11]

[12]

[13]

[14]

[15]

[16]

[17]

[18]

[19]

[20]

[21]

[22]

[23]

[24]

[25]

[26]

[27]

[28]

[29]

[30]

[31]

[32]

OWASP

Contents

History

Resources

Tools

Publications

Models and standards

Other projects

Certifications

Awards

See also

References

External links

Navigation menu

File:OWASP black logo.svg
Lua error in Module:Infobox_mapframe at line 197: attempt to index field 'wikibase' (a nil value).
Founded	2001^[1]
Founders	Mark Curphey^[1]
Type	501(c)(3) nonprofit organization
Purpose	Web security, application security, vulnerability assessment
Method	Industry standards, conferences, workshops
Membership	approx. 13,000 volunteers (2017)^[4]
Key people	Andrew van der Stock, Executive Director; Kelly Santalucia, Director of Events and Corporate Support; Harold Blankenship, Director of Technology and Projects; Jason C. McDonald, Director of Community Development; Dawn Aitken, Operations Manager; Lauren Thomas, Event Coordinator^[2]
Revenue	Decrease $2.3 million (2017)^[3]
Website	owasp.org

OWASP

History

Resources

Tools

Publications

Models and standards

Other projects

Certifications

Awards

See also

References

External links

Navigation menu

Search