OWASP Whitepaper

Check out our whitepaper, Simplifying Application Security and Compliance with the OWASP Top Ten.

Security Innovation co-leads the OWASP Academies and  Exams Project, and works closely with OWASP leaders to build and deliver Web application security for the OWASP and security communities. Our solutions include:

OWASP Computer Based Training

  • OWASP Top Ten - Threats & Mitigations
    Free, 90-minute course with a comprehensive exam. It covers strategies and best practices for understanding, identifying and mitigating the risk of vulnerabilities and attacks within the OWASP Top 10.  >>
  • How to Test for the OWASP Top Ten
    90-minute course with a comprehensive exam.  It describes how OWASP flaws occur and provides testing strategies to identify them.  Upon completion, you will be able to determine if a web application is vulnerable to the OWASP Top Ten and how to protect against them.  >>
  • Creating Secure Code for ASP.Net, Java,  or C/C++ Applications
    These 2 hour courses provide an overview of common Web application vulnerabilities and a set of defensive coding best practices and techniques to avoid them.  >>


Secure Development Knowledgebase

TeamMentor OWASP Edition

TeamMentor OWASP Edition is a free, Web-based guidance system that provides expert knowledge as development and IT teams on security best practices as they design, code, and test applications. It contains more than 250 searchable code snippets, checklists, and how-to's that can be filtered by role, technology, and specific Top 10 threat.

Get Secure Coding Standards for PCI-DSS, .Net, C/C++, C#, Java, and more!
TeamMentor OWASP is a subset of our commercial TeamMentor product, which contains 3,000+ guidance assets that cover all the popular technologies, platforms, frameworks, regulations and standards (including OWASP)

Web Application Assessment

Our Security Engineers can conduct a deep code review or Web application penetration test, focusing specifically on the OWASP Top Ten. more>>

OWASP Exams

Security Innovation created the first set of  OWASP exams, and now they are open source and anyone can contribute to them. The exams are a large set of open source questions and answers about web security that can be used by anyone in the OWASP community. 

The exams are targeted at organizations and Universities that want to roll out internal exams on web security exams competence, vocational institutions, etc.