Who is the OWASP® Foundation?

The Open Web Application Security Project® (OWASP) is a nonprofit foundation that works to improve the security of software. Through community-led open-source software projects, hundreds of local chapters worldwide, tens of thousands of members, and leading educational and training conferences, the OWASP Foundation is the source for developers and technologists to secure the web.

  • Tools and Resources
  • Community and Networking
  • Education & Training

For nearly two decades corporations, foundations, developers, and volunteers have supported the OWASP Foundation and its work. Donate, Join, or become a Corporate Member today.

Project Spotlight: OWASP Top 10

Top 10 Logo

We are back again with yet another OWASP Spotlight series and this time we have a project which needs no introduction and I got the chance to interact with Andrew van der Stock, OWASP Foundation Executive Director and the project leader for OWASP Top 10.

The OWASP Top 10 is a book/referential document outlining the 10 most critical security concerns for web application security. The report is put together by a team of security experts from all over the world and the data comes from a number of organisations and is then analysed.

Continue to read about OWASP Top 10…

Fight Club Flyer

OWASP Sydney Chapter Leadership are on fire! Ric Campo, Jack Guildford, and Sherry Liu took over the Sydney OWASP chapter in July 2020 and hit the ground running and have not looked back. See virtual meeting activity reach a new level. December started with OWASP Jingleton Hack for Beginners. This provided cybersecurity beginners with the opportunity to practice their skills and learn the basics of web application penetration testing. February experience their version of Hack the Box’s King of the Hill called “Fight Club.” This is a team event but if you do not have a team don’t worry. One will be found for you! See Meetup for all details.

OWASP Foundation Statement on Anti-Harassment


Sherif Mansour, March 30, 2021

This week has been a stark reminder that having a policy against harassment and abuse is an empty promise if there is not a fully-functioning process behind it to ensure complaints are heard and fairly addressed, with egregious violators permanently removed from the community.

OWASP stands with victims of harassment and abuse and unequivocally condemns abuse in all of its forms. Our commitment to our community is to ensure our meetings, activities, and events are a safe space that is welcoming to all and providing a competent mechanism for victims to report incidents and receive a swift outcome.

...read more

Recent OWASP News & Opinions

Upcoming Conferences