The OWASP Cheat Sheet Series was created to provide a concise collection of high value information on specific application security topics.
CC-BY-SA-4.0 License
Welcome to the official repository for the Open Web Application Security Project (OWASP) Cheat Sheet Series project. The project focuses on providing good security practices for builders in order to secure their applications.
In order to read the cheat sheets and reference them, use the project official website. The project details can be viewed on the OWASP main website without the cheat sheets.
🚩 Markdown files are the working sources and aren't intended to be referenced in any external documentation, books or websites.
We're easy to find on Slack:
Feel free to ask questions, suggest ideas, or share your best recipes.
We are actively inviting new contributors! To start, please read the contribution guide.
This project is only possible thanks to the work of many dedicated volunteers. Everyone is encouraged to help in ways large and small. Here are a few ways you can help:
This link allows you to download a build (ZIP archive) of the offline website.
The OWASP Cheat Sheet Series website can be built and tested locally by issuing the following commands:
make install-python-requirements
make generate-site
make serve # Binds port 8000
The OWASP Cheat Sheet Series website can be built and tested locally inside a container by issuing the following commands:
docker build -t cheatsheetseries .
docker run --name cheatsheetseries -p 8000:8000 cheatsheetseries
podman build -t cheatsheetseries .
podman run --name cheatsheetseries -p 8000:8000 localhost/cheatsheetseries
A special thank you to the following people for their help provided during the migration:
Open Web Application Security Project and OWASP are registered trademarks of the OWASP Foundation, Inc.