Top 17 Python Owasp Projects

Owasp

• Add a project

1. CheatSheetSeries

   1 52 29,078 9.2 Python

   The OWASP Cheat Sheet Series was created to provide a concise collection of high value information on specific application security topics.

   

   Project mention: Using AI Offline: Insights into Local Models | dev.to | 2025-01-29

   Just for fun, I cloned the OWASP repo https://github.com/OWASP/CheatSheetSeries.git and am waiting for the indexing process to finish. I then asked the model (on the left side) and included all files from the cloned project (on the right side). As you can see below, the right side contains more useful information

2. CodeRabbit

   coderabbit.ai featured

   CodeRabbit: AI Code Reviews for Developers. Revolutionize your code reviews with AI. CodeRabbit offers PR summaries, code walkthroughs, 1-click suggestions, and AST-based analysis. Boost productivity and code quality across all major languages with each PR.

   

3. Nettacker

   2 1 3,881 9.2 Python

   Automated Penetration Testing Framework - Open-Source Vulnerability Scanner - Vulnerability Management

   

   Project mention: Nettacker: Open-Source Automated Penetration Testing and Vulnerability Scanner | news.ycombinator.com | 2024-09-03

4. ciso-assistant-community

   3 5 2,761 10.0 Python

   CISO Assistant is a one-stop-shop for GRC, covering Risk, AppSec and Compliance/Audit Management and supporting +70 frameworks worldwide with auto-mapping: NIST CSF, ISO 27001, SOC2, CIS, PCI DSS, NIS2, CMMC, PSPF, GDPR, HIPAA, Essential Eight, NYDFS-500, DORA, NIST AI RMF, 800-53, 800-171, CyFun, CJIS, AirCyber, NCSC, ECC, SCF and so much more

   

   Project mention: CISO Assistant | news.ycombinator.com | 2025-01-04

5. Astra

   4 2 2,552 3.4 Python

   Automated Security Testing For REST API's

   

6. coreruleset

   5 14 2,486 9.4 Python

   OWASP CRS (Official Repository)

   

   Project mention: Install Modsecurity + OWASP CRS for Nginx Webserver on Centos 7 | dev.to | 2024-05-27

   sudo git clone https://github.com/coreruleset/coreruleset.git /etc/nginx/owasp-crs

7. owasp-masvs

   6 10 2,123 6.1 Python

   The OWASP MASVS (Mobile Application Security Verification Standard) is the industry standard for mobile app security.

   

8. Maryam

   7 1 1,081 3.8 Python

   Maryam: Open-source Intelligence(OSINT) Framework

   

9. SaaSHub

   www.saashub.com featured

   SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives

   

10. OpenDoor

    8 1 895 0.5 Python

    OWASP WEB Directory Scanner

    

11. betterscan

    9 34 852 9.9 Python

    Code Scanning/SAST/Static Analysis/Linting using many tools/Scanners with One Report (Code, IaC) - Betterscan

    

12. OFFAT

    10 1 603 9.1 Python

    The OWASP OFFAT tool autonomously assesses your API for prevalent vulnerabilities, though full compatibility with OAS v3 is pending. The project remains a work in progress, continuously evolving towards completion.

    

    Project mention: FLaNK AI Weekly for 29 April 2024 | dev.to | 2024-04-29

13. apicheck

    11 2 272 0.0 Python

    The DevSecOps toolset for REST APIs

    

14. zap-cli

    12 1 231 0.0 Python

    A simple tool for interacting with OWASP ZAP from the commandline.

    

15. www-project-secure-headers

    13 3 153 9.3 Python

    The OWASP Secure Headers Project

    

16. oshp-validator

    14 1 114 6.1 Python

    Venom tests suite to validate an HTTP security response headers configuration against OSHP recommendation.

    

    Project mention: Is your website Secure check out | news.ycombinator.com | 2024-08-23

    What's better about this vs. Mozilla Observatory.

    https://developer.mozilla.org/en-US/observatory (formerly https://observatory.mozilla.org/)

    Or Security Headers?

    https://securityheaders.com/

    Or VENOM?

    https://github.com/oshp/oshp-validator

    Applaud the effort, these are things that more devs should be aware of when building websites...

    Hey some specific feedback on this tool... On mobile, it has a lot of "view port wobble" and the input fields aren't keyed right, it's just using a straight text input field so you don't get any ".com" buttons as you type. Small UX stuff like that annoy me more than if a page has a privacy policy setup correctly. (=

17. raider

    15 1 104 0.0 Python

    OWASP Raider: a novel framework for manipulating the HTTP processes of persistent sessions (by OWASP)

    

18. malwarescanner

    16 1 90 2.8 Python

    Simple Malware Scanner written in python

    

19. CertVerify

    17 1 65 3.3 Python

    A scanner that files with compromised or untrusted code signing certificates written in python.

    

20. SaaSHub

    www.saashub.com featured

    SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives

    

Python Owasp related posts

• Preventing CSRF and XSS Attacks with JWT and Fingerprint Cookies in Express

  1 project | dev.to | 1 Oct 2024

• 🛡️ Mastering Security HTTP Headers

  2 projects | dev.to | 4 Sep 2024

• Looking for feedback on a security-related project idea

  2 projects | /r/AskNetsec | 5 Jul 2023

• Advice For Securing Backend Code

  1 project | /r/node | 10 Jun 2023

• SAP Commerce Cloud and Broken Smart Edit

  1 project | dev.to | 4 Jun 2023

• Access Denied

  3 projects | /r/akamai | 31 May 2023

• What are some senior level learning resources you recommend for improving as a backend engineer?

  5 projects | /r/ExperiencedDevs | 30 May 2023
• A note from our sponsor - CodeRabbit
  coderabbit.ai | 21 Mar 2025

  Revolutionize your code reviews with AI. CodeRabbit offers PR summaries, code walkthroughs, 1-click suggestions, and AST-based analysis. Boost productivity and code quality across all major languages with each PR. Learn more →

Index

Sponsored

CodeRabbit: AI Code Reviews for Developers

Revolutionize your code reviews with AI. CodeRabbit offers PR summaries, code walkthroughs, 1-click suggestions, and AST-based analysis. Boost productivity and code quality across all major languages with each PR.

coderabbit.ai

Do not miss the trending Python projects with our weekly report!