Who is the OWASP® Foundation?
The Open Web Application Security Project® (OWASP) is a nonprofit foundation that works to improve the security of software. Through community-led open-source software projects, hundreds of local chapters worldwide, tens of thousands of members, and leading educational and training conferences, the OWASP Foundation is the source for developers and technologists to secure the web.
- Tools and Resources
- Community and Networking
- Education & Training
For nearly two decades corporations, foundations, developers, and volunteers have supported the OWASP Foundation and its work. Donate, Join, or become a Corporate Member today.
Project Spotlight: Top 10 Proactive Controls
OWASP Top 10 Proactive Controls describes the most important control and control categories that every architect and developer should absolutely, 100% include in every project. The Top 10 Proactive Controls are by developers for developers to assist those new to secure development.
- C1: Define Security Requirements
- C2: Leverage Security Frameworks and Libraries
- C3: Secure Database Access
- C4: Encode and Escape Data
- C5: Validate All Inputs
- C6: Implement Digital Identity
- C7: Enforce Access Controls
- C8: Protect Data Everywhere
- C9: Implement Security Logging and Monitoring
- C10: Handle All Errors and Exceptions
For more information, see the complete document at the Top 10 Proactive Controls project page
Featured Chapter: Sydney
OWASP Sydney Chapter Leadership are on fire! Ric Campo, Jack Guildford, and Sherry Liu took over the Sydney OWASP chapter in July 2020 and hit the ground running and have not looked back. See virtual meeting activity reach a new level. December started with OWASP Jingleton Hack for Beginners. This provided cybersecurity beginners with the opportunity to practice their skills and learn the basics of web application penetration testing. February experience their version of Hack the Box’s King of the Hill called “Fight Club.” This is a team event but if you do not have a team don’t worry. One will be found for you! See Meetup for all details.
Announcing Brain Breaks, starting with comedian Jeff Shaw
The OWASP Foundation is excited to announce the launch of a new event series created with our community in mind. Our Brain Break event series is an entertainment-based event program we’ve created for 2021 and we’re excited to announce our first event on February 18th featuring comedian Jeff Shaw.
...read moreRecent OWASP News & Opinions
- OWASP 2021 Board of Directors, January 26, 2021
- Kelly Santalucia appointed as Director of Events and Corporate Support, January 18, 2021
- Dependency Track v4 Release, January 8, 2021
- OWASP SecureFlag Open Platform Member Benefit, December 24, 2020
Upcoming Conferences
- Brain Break, February 18, April 20, June 23, August 18, October 20, and December 16.
- Call to Battle, February 26, April 9, August 27, and December 7.
- OWASP Virtual Training Courses, March 9, May 25, June 15, July 13, September 7, and November 3.
- Lightning Conference, March 15, May 12, July 20, September 28, and November 16.