Explore the World of
Cyber
Security
Empowering a global community to build secure software through open-source tools, expert education, and collaborative innovation — free for everyone, everywhere.
OWASP 2025
Global AppSec USA
Join 800+ security professionals from November 3–7, 2025, at the Marriott Marquis for a dynamic week of learning, networking, and inspiration. Explore six expert-led tracks—from OWASP Projects to builder, breaker, defender, and more.
OWASP X Google Summer of Code 2025 - Enabling 15 Opportunities for Impact
We're proud to share that OWASP is once again an official mentoring organization for Google Summer of Code (GSoC) 2025—and this year, we've secured 15 contributor slots across some of the most impactful open-source security projects in the world.
This milestone reinforces OWASP's ongoing commitment to open-source innovation and highlights the strength of our global community of mentors and contributors, as well as our commitment to education-by-doing with the GSoC program.
What's on Deck?
Contributors will get hands-on experience improving and expanding some of OWASP's most vital tools:
Juice Shop
A globally-used, intentionally insecure web app for security training.
Nettacker
A fast, automated network scanner built for vulnerability detection.
Offensive Web Testing Framework
A smart framework for streamlined penetration testing.
Bug Logging Tool (BLT)
A next-gen bug tracker focused on gamification to incentivize bug and security reporting.
Nest
Core infrastructure to power and enable the OWASP projects and contributors ecosystem.
PyGoat
A Python-based sandbox for learning and exposing security flaws in modern stacks.
OpenCRE
A collaborative cybersecurity knowledge base & reference system.
Upcoming Events
Stay connected with the global AppSec community through OWASP's upcoming conferences, chapter meetups, and training sessions.
OWASP London Chapter
OWASP Berlin Meetup
OWASP Tokyo Workshop
OWASP NYC Chapter
OWASP Sydney Chapter
OWASP Paris Security Day
Our Highlighted Resources
Explore powerful security tools developed by the OWASP community. Each resource provides unique capabilities to strengthen your application security posture.
Amass
In-depth attack surface mapping and asset discovery platform for security professionals and penetration testers.
OWTF
Offensive Web Testing Framework that combines different testing strategies for efficient penetration testing workflows.
Dependency-Track
Intelligent component analysis platform for identifying and reducing risk from third-party components.
Recent OWASP News & Opinions
Starr Brown, May 6
OWASP Enables AI Regulation That Works with OWASP AI Exchange
Starr Brown, May 6
OWASP Enables AI Regulation That Works with OWASP AI Exchange
Starr Brown, May 6
OWASP Enables AI Regulation That Works with OWASP AI Exchange
Upcoming Conferences
OWASP Global AppSec EU 2025
Early bird pricing ends soon!
