OWASP ASST (Automated Software Security Toolkit) – A Novel Open Source Web Security Scanner

OWASP ASST (Automated Software Security Toolkit) | A Novel Open Source Web Security Scanner. Note: AWSS is the older name of ASST Introduction Web applications have become an integral part of everyday life, but many of these applications are deployed with critical vulnerabilities that can be fatally exploited. As the technology used to develop theseRead More

OWASP Threat Dragon – Cross-Platform Threat Modeling Application

Threat Dragon is a free, open-source, cross-platform threat modeling application including system diagramming and a rule engine to auto-generate threats/mitigations. It is an OWASP Incubator Project. The focus of the project is on great UX, a powerful rule engine and integration with other development lifecycle tools.There is a good overview of threat modeling and riskRead More

Multi-Juicer – Run Capture The Flags And Security Trainings With OWASP Juice Shop

Running CTFs and Security Trainings with OWASP Juice Shop is usually quite tricky, Juice Shop just isn’t intended to be used by multiple users at a time. Instructing everybody how to start Juice Shop on their own machine works ok, but takes away too much valuable time.MultiJuicer gives you the ability to run separate JuiceRead More

OWASP D4N155 – Intelligent And Dynamic Wordlist Using OSINT

It’s an information security audit tool that creates intelligent wordlists based on the content of the target page.Help usSee some calculations usedInstallNeed to: Python3.6, Bash (GNU Bourne-Again SHell)Optional: Git, Groff git clone https://github.com/owasp/D4N155.gitcd D4N155pip3 install -r requirements.txtbash main Or whithout git wget -qO- https://github.com/owasp/D4N155/archive/master.zip | bsdtar -xf-cd D4N155-masterpip3 install -r requirements.txtbash main Manual D4N155: ToolRead More

X