Who is the OWASP® Foundation?
The Open Web Application Security Project® (OWASP) is a nonprofit foundation that works to improve the security of software. Through community-led open-source software projects, hundreds of local chapters worldwide, tens of thousands of members, and leading educational and training conferences, the OWASP Foundation is the source for developers and technologists to secure the web.
- Tools and Resources
- Community and Networking
- Education & Training
For nearly two decades corporations, foundations, developers, and volunteers have supported the OWASP Foundation and its work. Donate, Join, or become a Corporate Member today.
Project Spotlight: OWASP Top 10
We are back again with yet another OWASP Spotlight series and this time we have a project which needs no introduction and I got the chance to interact with Andrew van der Stock, OWASP Foundation Executive Director and the project leader for OWASP Top 10.
The OWASP Top 10 is a book/referential document outlining the 10 most critical security concerns for web application security. The report is put together by a team of security experts from all over the world and the data comes from a number of organisations and is then analysed.
Featured Event: OWASP’s 20th Anniversary Event Celebration
Join us September 24 for 24-hours as we honor the past, celebrate the present and embrace the future of OWASP and cybersecurity. Hear from world renowned keynotes and special speakers, network with your peers and interact with our event sponsors. With an anticipated 10k+ attendees from around the world, you will not want to miss this live on-line event! Our program will be announced soon and sponsorships are now being accepted!
Announcing a new partnership with We Hack Purple, awesome OWASP member benefit immediately available
As part of the OWASP & We Hack Purple partnership, all OWASP members are now provided free access to the Application Security Foundations Level 1 course from WHP! This introductory AppSec course will answer all your burning questions and define all the technical terms right at the start. Then we will set goals for your AppSec program at work as an exercise. After this, we dive deep into every type of application security activity and tool on the market while sprinkling you with quizzes and exercises. As a final project, we make an AppSec program action plan for you to bring back to work with you. This on-demand course is FREE for all OWASP members!
To access the course, read on, sign up with your OWASP.org email address, and start learning.
...read moreRecent OWASP News & Opinions
- Membership Portal Launches, July 5, 2021
- OWASP Call for Trainers is Open for Global AppSec 2021 with Focus on Fresh Ideas, July 2, 2021
- CVE-2021-35368 - CRS Request Body Bypass, June 30, 2021
- 2021 AppSec Pacific Northwest Launches, June 21, 2021
Upcoming Conferences
- Brain Break, August 18, October 20, and December 16.
- Call to Battle, August 28, and December 7.
- OWASP Virtual Training Courses, July 20, September 7, and November 16.
- Lightning Conference, September 28, and November 3.