Your gateway to OWASP. Discover, engage, and help shape the future!

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

Identity-Aware Tunneled Reverse Proxy Server with Dashboard UI

Community-contributed instructions, prompts, and configurations to help you make the most of GitHub Copilot.

Enterprise-ready zero-trust access platform built on WireGuard®.

💀 Generate a bunch of malicious pdf files with phone-home functionality. Can be used with Burp Collaborator or Interact.sh

Get your documents ready for gen AI

Prompt Orchestration Markup Language

Press shortcut → speak → get text. Free and open source. More local-first apps soon ❤️

AI-powered repository automation, run safely in GitHub Actions

PromptMe is an educational project that showcases security vulnerabilities in large language models (LLMs) and their web integrations. It includes 10 hands-on challenges inspired by the OWASP LLM T…

Open Source Static Scanning tool to detect data flows in your code, find data security vulnerabilities & generate accurate Play Store Data Safety Report.

Kortix – build, manage and train AI Agents. Fully Open Source.

A dotfile manager and templater written in rust 🦀

OWASP Foundation Web Respository

Timeful (formerly Schej) is a scheduling platform helps you find the best time for a group to meet. It is a free availability poll that is easy to use and integrates with your calendar.

⚙️ Create and run workflows (RPA 2.0)

Pen Test Report Generation and Assessment Collaboration

Secrets Ninja is an GUI tool for validating & investigating API keys discovered during pentesting & bug bounty hunting.

Calibre-Web but Automated and with Many New Features! Fully automate and simplify your eBook set up!

Fair-code workflow automation platform with native AI capabilities. Combine visual building with custom code, self-host or cloud, 400+ integrations.

Communicate with an LLM provider using a single interface

A free and open vulnerabilities database and the packages they impact. And the tools to aggregate and correlate these vulnerabilities. Sponsored by NLnet https://nlnet.nl/project/vulnerabilitydatab…

Pocket Flow: Codebase to Tutorial

A list of SaaS, PaaS and IaaS offerings that have free tiers of interest to devops and infradev

A task runner / simpler Make alternative written in Go

This repository contains Cursor Security Rules designed to improve the security of both development workflows and AI agent usage within the Cursor environment. These rules aim to enforce safe codin…

Self-hosted collection of powerful web-based tools for everyday tasks. No ads, no tracking, just fast, accessible utilities right from your browser!