This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit


Revision as of 15:59, 27 May 2009 by MediaWiki spam cleanup (talk | contribs) (Reverting to last version not containing links to

Jump to: navigation, search Application Security Tools

This category is for articles describing application security tools. The tools can be divided into a few basic categories:

Important note about commercial tools

OWASP encourages constructive discussion of commercial application security tools. We support the use of tools as a part of an application security program. However, we object to the marketing of these tools as a solution to application security. Vendors that claim that their tools address the OWASP Top Ten (and there are many) should be aware that this is well beyond the state of the art. In addition, the use of the OWASP brand in this manner is a violation of the OWASP brand usage rules.

How to add a tool

First create a stub for the tool you want to add. Your article should include details about:

  • the type of tool
  • basic features of the tool
  • key distinguishers of the tool
  • where the tool can be found
  • constructive information about strengths and weaknesses of the tool

How to add a new Tool article

You can follow the instructions to make a new Tool article. Please use the appropriate structure and follow the Tutorial. Be sure to paste the following at the end of your article to make it show up in the Tool category:



This category has the following 2 subcategories, out of 2 total.