{"id":50686296,"url":"https://github.com/jezreal-dev/owasp-evaluation","last_synced_at":"2026-06-08T23:03:56.682Z","repository":{"id":356828733,"uuid":"1234230836","full_name":"jezreal-dev/owasp-evaluation","owner":"jezreal-dev","description":"Research, install, and evaluate OWASP open-source security tools against lab environments. Document findings, share with the OWASP community, and provide guidance for organizations on tight budgets.","archived":false,"fork":false,"pushed_at":"2026-05-09T23:11:46.000Z","size":6,"stargazers_count":0,"open_issues_count":0,"forks_count":0,"subscribers_count":0,"default_branch":"main","last_synced_at":"2026-06-06T03:22:28.445Z","etag":null,"topics":[],"latest_commit_sha":null,"homepage":null,"language":null,"has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/jezreal-dev.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null,"notice":null,"maintainers":null,"copyright":null,"agents":null,"dco":null,"cla":null}},"created_at":"2026-05-09T23:06:38.000Z","updated_at":"2026-05-09T23:11:50.000Z","dependencies_parsed_at":null,"dependency_job_id":null,"html_url":"https://github.com/jezreal-dev/owasp-evaluation","commit_stats":null,"previous_names":["jmomoh-source/owasp-evaluation","jezreal-dev/owasp-evaluation"],"tags_count":null,"template":false,"template_full_name":null,"purl":"pkg:github/jezreal-dev/owasp-evaluation","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jezreal-dev%2Fowasp-evaluation","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jezreal-dev%2Fowasp-evaluation/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jezreal-dev%2Fowasp-evaluation/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jezreal-dev%2Fowasp-evaluation/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/jezreal-dev","download_url":"https://codeload.github.com/jezreal-dev/owasp-evaluation/tar.gz/refs/heads/main","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jezreal-dev%2Fowasp-evaluation/sbom","scorecard":null,"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":34083848,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-05-26T15:22:16.424Z","status":"online","status_checked_at":"2026-06-08T02:00:07.615Z","response_time":111,"last_error":null,"robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":true,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":[],"created_at":"2026-06-08T23:03:55.735Z","updated_at":"2026-06-08T23:03:56.668Z","avatar_url":"https://github.com/jezreal-dev.png","language":null,"funding_links":[],"categories":[],"sub_categories":[],"readme":"# OWASP Tools Evaluation Project\n\n## 📌 Overview\nThis project explores OWASP open-source tools to evaluate their usefulness for organizations with limited budgets.  \nThe goal is to install, test, and document one or more OWASP tools against lab environments, mimicking real-world scenarios.\n\n---\n\n## 🎯 Objectives\n- Research OWASP projects and select one primary tool.\n- Install and configure the tool in a lab environment.\n- Deploy against vulnerable applications (e.g., DVWA, Juice Shop).\n- Document installation, usage, and evaluation results.\n- Share findings with the OWASP community.\n- Add project outcomes to portfolio/CV.\n\n---\n\n## 🛠️ Tools Explored\n- **ThreatAtlas** — Threat modeling and visualization.  \n- **CycloneDX** — Software Bill of Materials (SBOM).  \n- **ZAP (Zed Attack Proxy)** — Web application security testing.  \n\n*(Choose one to focus on deeply, others optional for comparison.)*\n\n---\n\n## 🧪 Lab Setup\n- Environment: [e.g., Ubuntu VM, Docker containers]  \n- Vulnerable apps: [DVWA, Juice Shop, custom test app]  \n- Configuration details: [network setup, dependencies, etc.]  \n\n---\n\n## 📋 Evaluation Criteria\n- Ease of installation and setup.  \n- Documentation quality.  \n- Accuracy of findings.  \n- Usability and learning curve.  \n- Integration potential (CI/CD, DevSecOps).  \n\n---\n\n## 📊 Results\n- **Screenshots/GIFs** of tool in action.  \n- Key findings (strengths, weaknesses).  \n- Recommendations for organizations.  \n\n---\n\n## 📚 Documentation\n- [Setup Guide](docs/setup.md)  \n- [Evaluation Report](docs/evaluation.md)  \n- [Walkthrough](docs/walkthrough.md)  \n\n---\n\n## 🌍 Community Engagement\n- Contributions to OWASP discussions.  \n- Suggested improvements to documentation.  \n- Shared findings with peers.  \n\n---\n\n## 📌 Roadmap\n- Phase 1: Research \u0026 Selection ✅  \n- Phase 2: Installation \u0026 Setup ⏳  \n- Phase 3: Lab Deployment ⏳  \n- Phase 4: Evaluation \u0026 Documentation ⏳  \n- Phase 5: Community Engagement ⏳  \n- Phase 6: Stretch Goals (optional) ⏳  \n\n---\n\n## 📋 Project Board\nTrack progress and tasks on the [Project Board](https://github.com/jmomoh-source/owasp-evaluation/projects).\n\n---\n\n## 📌 Status\nCurrently focusing on **[chosen tool]** with lab deployment in progress.\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fjezreal-dev%2Fowasp-evaluation","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fjezreal-dev%2Fowasp-evaluation","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fjezreal-dev%2Fowasp-evaluation/lists"}