{"id":13539556,"url":"https://github.com/owasp/cheatsheetseries","last_synced_at":"2026-03-02T03:35:11.774Z","repository":{"id":37251491,"uuid":"162723104","full_name":"OWASP/CheatSheetSeries","owner":"OWASP","description":"The OWASP Cheat Sheet Series was created to provide a concise collection of high value information on specific application security topics.","archived":false,"fork":false,"pushed_at":"2024-05-18T14:45:51.000Z","size":1591837,"stargazers_count":26698,"open_issues_count":45,"forks_count":3751,"subscribers_count":572,"default_branch":"master","last_synced_at":"2024-05-19T06:04:56.335Z","etag":null,"topics":["application-security","appsec","best-practices","cheatsheets","code","owasp","security"],"latest_commit_sha":null,"homepage":"https://cheatsheetseries.owasp.org","language":"Python","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"cc-by-sa-4.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/OWASP.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":"CONTRIBUTING.md","funding":null,"license":"LICENSE.md","code_of_conduct":"CODE_OF_CONDUCT.md","threat_model":null,"audit":null,"citation":null,"codeowners":".github/CODEOWNERS","security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2018-12-21T14:26:43.000Z","updated_at":"2024-05-27T11:30:59.980Z","dependencies_parsed_at":"2024-02-02T11:32:10.439Z","dependency_job_id":"19afec8d-046b-44e1-bb9a-d2fdbec91f61","html_url":"https://github.com/OWASP/CheatSheetSeries","commit_stats":null,"previous_names":[],"tags_count":0,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/OWASP%2FCheatSheetSeries","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/OWASP%2FCheatSheetSeries/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/OWASP%2FCheatSheetSeries/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/OWASP%2FCheatSheetSeries/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/OWASP","download_url":"https://codeload.github.com/OWASP/CheatSheetSeries/tar.gz/refs/heads/master","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":240816453,"owners_count":19862288,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["application-security","appsec","best-practices","cheatsheets","code","owasp","security"],"created_at":"2024-08-01T09:01:27.817Z","updated_at":"2026-03-02T03:35:11.769Z","avatar_url":"https://github.com/OWASP.png","language":"Python","readme":"# Welcome to the OWASP Cheat Sheet Series\n\n[![OWASP Flagship](https://img.shields.io/badge/owasp-flagship%20project-48A646.svg)](https://www.owasp.org/index.php/OWASP_Project_Inventory#tab=Flagship_Projects)\n[![Creative Commons License](https://img.shields.io/github/license/OWASP/CheatSheetSeries)](https://creativecommons.org/licenses/by-sa/4.0/ \"CC BY-SA 4.0\")\n\nWelcome to the official repository for the Open Worldwide Application Security Project® (OWASP) Cheat Sheet Series project. The project focuses on providing good security practices for builders in order to secure their applications.\n\nIn order to read the cheat sheets and **reference** them, use the project [official website](https://cheatsheetseries.owasp.org). The project details can be viewed on the [OWASP main website](https://owasp.org/www-project-cheat-sheets/) without the cheat sheets.\n\n:triangular_flag_on_post: Markdown files are the working sources and aren't intended to be referenced in any external documentation, books or websites.\n\n## Cheat Sheet Series Team\n\n### Project Leaders\n\n- [Jim Manico](https://github.com/jmanico)\n- [Jakub Maćkowski](https://github.com/mackowski)\n- [Shlomo Zalman Heigh](https://github.com/szh)\n\n### Core team\n\n- [Kevin W. Wall](https://github.com/kwwall)\n\n## Chat With Us\n\nWe're easy to find on Slack:\n\n1. Join the OWASP Group Slack with this [invitation link](https://owasp.org/slack/invite).\n2. Join the [#cheatsheets channel](https://owasp.slack.com/messages/C073YNUQG).\n\nFeel free to ask questions, suggest ideas, or share your best recipes.\n\n## Contributions, Feature Requests, and Feedback\n\nWe are actively inviting new contributors! To start, please read the [contribution guide](CONTRIBUTING.md) and our [How To Make A Cheatsheet guide](GUIDELINE.md).\n\nThis project is only possible thanks to the work of many dedicated volunteers. Everyone is encouraged to help in ways large and small. Here are a few ways you can help:\n\n- Read the current content and help us fix any spelling mistakes or grammatical errors.\n- Choose an existing [issue](https://github.com/OWASP/CheatSheetSeries/issues) on GitHub and submit a pull request to fix it.\n- Open a new issue to report an opportunity for improvement.\n\n### Automated Build\n\nThis [link](https://cheatsheetseries.owasp.org/bundle.zip) allows you to download a build (ZIP archive) of the offline website.\n\n### Local Build [![pyVersion3x](https://img.shields.io/badge/python-3.x-blue.svg)](https://www.python.org/downloads/)\n\nThe OWASP Cheat Sheet Series website can be built and tested locally by issuing the following commands:\n\n```sh\nmake install-python-requirements\nmake generate-site\nmake serve  # Binds port 8000\n```\n\n### Linting\n\nTo check markdown and terminology:\n\n```sh\nnpm run lint-markdown\nnpm run lint-terminology\n```\n\nTo auto-fix linting issues:\n\n```sh\nnpm run lint-markdown-fix\nnpm run lint-terminology-fix\n```\n\n### Container Build\n\nThe OWASP Cheat Sheet Series website can be built and tested locally inside a container by issuing the following commands:\n\n#### Docker\n\n```sh\ndocker build -t cheatsheetseries .\ndocker run --name cheatsheetseries -p 8000:8000 cheatsheetseries\n```\n\n#### Podman\n\n```sh\npodman build -t cheatsheetseries .\npodman run --name cheatsheetseries -p 8000:8000 localhost/cheatsheetseries\n```\n\n## Contributors\n\n- **From 2014 to 2018:** [V1](CONTRIBUTOR-V1.md) - Initial version of the project hosted on the [OWASP WIKI](https://wiki.owasp.org).\n- **From 2019:** [V2](https://github.com/OWASP/CheatSheetSeries/graphs/contributors) - Hosted on [GitHub](https://github.com/OWASP/CheatSheetSeries).\n\n## Special thanks\n\nA special thank you to the following people for their help provided during the migration:\n\n- [Dominique Righetto](https://github.com/righettod): For his special leadership and guidance.\n- [Elie Saad](https://github.com/ThunderSon): For valuable help in updating the OWASP Wiki links for all the migrated cheat sheets and for years of leadership and other project support.\n- [Jakub Maćkowski](https://github.com/mackowski): For valuable help in updating the OWASP Wiki links for all the migrated cheat sheets.\n\nOpen Worldwide Application Security Project and OWASP are registered trademarks of the OWASP Foundation, Inc.\n","funding_links":[],"categories":["\u003ca id=\"1233584261c0cd5224b6e90a98cc9a94\"\u003e\u003c/a\u003e渗透\u0026\u0026offensive\u0026\u0026渗透框架\u0026\u0026后渗透框架","\u003ca id=\"5dd93fbc2f2ebc8d98672b2d95782af3\"\u003e\u003c/a\u003e工具","\u003ca id=\"8c5a692b5d26527ef346687e047c5c21\"\u003e\u003c/a\u003e收集"],"sub_categories":["\u003ca id=\"8e1069b2bce90b87eea762ee3d0935d8\"\u003e\u003c/a\u003eOWASP"],"project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fowasp%2Fcheatsheetseries","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fowasp%2Fcheatsheetseries","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fowasp%2Fcheatsheetseries/lists"}