Who is the OWASP® Foundation?

The Open Worldwide Application Security Project® (OWASP) is a nonprofit foundation that works to improve the security of software. Through community-led open-source software projects, hundreds of local chapters worldwide, tens of thousands of members, and leading educational and training conferences, the OWASP Foundation is the source for developers and technologists to secure the web.

  • Tools and Resources
  • Community and Networking
  • Education & Training

For nearly two decades corporations, foundations, developers, and volunteers have supported the OWASP Foundation and its work. Donate, Join, or become a Corporate Supporter today.


Project Spotlight: AI Security and Privacy Guide

AI Security and Privacy logo

AI applications are on the rise and so are the concerns regarding AI security and privacy. How can AI systems be attacked? How can they be protected? This is why OWASP is now offering the AI security & privacy guide - to provide clear and actionable insights on designing, creating, testing, and procuring secure and privacy-preserving AI systems. By open-sourcing our understanding of the state-of-the-art, we can create consensus and collect ideas from a variety of perspectives.

Read more..


OWASP 2023 Global AppSec DC

OWASP 2023 Global AppSec DC

Registration Open!

Join us in Washington DC, USA Oct 30 - Nov 3, for leading application security technologies, speakers, prospects, and community, in a unique event that will build on everything you already know to expect from an OWASP Global Conference.

Designed for private and public sector infosec professionals, the two-day OWASP conference followed by three days of training equips developers, defenders, and advocates to build a more secure web. Join us for leading application security technologies, speakers, prospects, and the community, in a unique event that will build on everything you already know to expect from an OWASP Global Conference.

Read more..


Coraza v 3.0.0 Release!

image

Juan Pablo Tosso, June 1, 2023

Exciting news from the Coraza family! 🎉

Today, we’re thrilled to announce the release of OWASP Coraza Web Application Firewall (WAF) version v3.0.0, a groundbreaking update to our beloved security tool. This major release significantly reworks Coraza, making it faster, more developer-friendly, and thoroughly cloud-native. Key Updates Include:

1️⃣ Performance Boost: We’ve improved performance up to 100 times through several enhancements. Special mention goes to our new debug logs system based on Zerolog, optimized variable collection types, and the cache transformation logic across the same transaction.

2️⃣ Revamped API: We’ve made our API more user-friendly and straightforward.

...read more


Recent OWASP News & Opinions

Upcoming Conferences