OWASP Foundation - The Open Source Foundation for Application Security

OWASP Foundation<br>Open Worldwide Application Security Project

Create Account<br>Donate

Explore the World of<br>Cyber

Security

Empowering a global community to build secure software through open-source tools,<br>expert education, and collaborative innovation — free for everyone, everywhere.

Explore OWASP Projects<br>Join the Community<br>Become a Corporate Supporter

3-7<br>NOV<br>2025

OWASP 2025<br>Global AppSec USA

Washington, DC

Join 800+ security professionals from November 3–7, 2025, at the Marriott Marquis for a dynamic week of learning, networking, and inspiration. Explore six expert-led tracks—from OWASP Projects to builder, breaker, defender, and more.

Register Now<br>More Info

Early bird pricing ends soon!

Latest News<br>Stay updated with OWASP announcements, events, and community highlights.

OWASP X Google Summer of Code 2025 - Enabling 15 Opportunities for Impact<br>We're proud to share that OWASP is once again an official mentoring organization for Google Summer of Code (GSoC) 2025—and this year, we've secured 15 contributor slots across some of the most impactful open-source security projects in the world.

Starr Brown, May 12

OWASP X Google Summer of Code 2025 - Enabling 15 Opportunities for Impact<br>We're proud to share that OWASP is once again an official mentoring organization for Google Summer of Code (GSoC) 2025—and this year, we've secured 15 contributor slots across some of the most impactful open-source security projects in the world.

15 contributor slots secured for 2025

Official GSoC mentoring organization

Impactful open-source security projects

Education-by-doing with the GSoC program

Continue Reading

GSoC 2025<br>What's on Deck?<br>Contributors will get hands-on experience improving and expanding some of OWASP's most vital tools:

Juice Shop

A globally-used, intentionally insecure web app for security training.

Nettacker

A fast, automated network scanner built for vulnerability detection.

Offensive Web Testing Framework

A smart framework for streamlined penetration testing.

Bug Logging Tool (BLT)

A next-gen bug tracker focused on gamification to incentivize bug and security reporting.

Nest

Core infrastructure to power and enable the OWASP projects and contributors ecosystem.

PyGoat

A Python-based sandbox for learning and exposing security flaws in modern stacks.

OpenCRE

A collaborative cybersecurity knowledge base & reference system.

Upcoming Events<br>Stay connected with the global AppSec community through OWASP's upcoming conferences, chapter meetups, and training sessions.

See All Events

Join the OWASP Community<br>Connect with developers and security professionals worldwide. Contribute to open-source projects building the future of application security.

Become a Member

Corporate Supporters

Become a Corporate Supporter

OWASP is a nonprofit foundation improving software security through open-source projects, global communities, and education. All resources are free and open to everyone.

Quick Links<br>ProjectsChaptersCorporate SupportersEventsNewsAboutFinance & governanceFinance (all documents)BoardBoard EUCommunityVisit Store

Legal<br>Legal

Socials<br>LinkedInGitHubX (Twitter)FacebookYouTube

Make a DonationJoin Now

OWASP, the OWASP logo, and Global AppSec are registered trademarks and AppSec Days, AppSec California, AppSec Cali, SnowFROC, OWASP Boston Application Security Conference, and LASCON are trademarks of the OWASP Foundation, Inc.<br>© 2026, OWASP Foundation Inc. All rights reserved.