Steve Springett's Projects
Community health files for the @GitHub organization
Get a free 1Password Teams membership for your open source project
An opinionated scaffolding framework that jumpstarts Java projects with an API-first design, secure defaults, and minimal dependencies
Application Security Verification Standard
Shows a project's CocoaPods dependency graph
Apache Commons Parent
A utility for validating and parsing Common Platform Enumeration (CPE) v2.2 and v2.3 as originally defined by MITRE and maintained by NIST
A Java library for calculating CVSSv2 and CVSSv3 scores and vectors
Browser hacks to disable WebAssembly (WASM)
A collection of HTTP response headers to elevate the security of your web app!
Quickly generate HTML documentation from a JSON schema
An experimental GitHub Action that performs a grammar check on JSON Schemas
The Maven UUID Generator Plugin generates a unique UUID for each build and assigns the value to project.build.uuid
A simple Java command-line utility to mirror the CVE JSON data from NIST.
An Open Letter to the OWASP Board
The OWASP MASVS (Mobile Application Security Verification Standard) is the industry standard for mobile app security.
A Java library for programmatically calculating OWASP Risk Rating scores
OWASP Foundation main site repository
A collection of JSON schema files including full API
This repo is a consolidation of Secure Software Supply Chain resources, such as talks, whitepapers, conferences and more.
Server side TLS Tools
StartLeft is an automation tool for generating Threat Models written in the Open Threat Model (OTM) format from a variety of different sources such as IaC files, diagrams or projects exported from Threat Modelling tools.
A Java library for parsing and programmatically using threat models
Amazon Web Services Stencil Library for TouchDraw
A simple Java command-line utility to mirror the entire contents of VulnDB.
OWASP Community Pages are a place where OWASP can accept community contributions for security-related content.
OWASP Foundation Web Respository