OWASP
Web Security Testing Guide (WSTG)
Comprehensive methodology for testing web applications—from recon to advanced testing.
Open-Source Security Guides
Authoritative, freely available security guides from established open-source projects
OWASP
OWASP Cheat Sheet Series
Concise, high-value cheat sheets covering secure coding and app-security best practices.
OWASP
Mobile App Security Testing Guide (MASTG)
In-depth manual for testing mobile apps, aligned with MASVS and security requirements.
OpenSSF
OpenSSF Security Guides
Guides on securing supply chains, managing dependencies, and safe development practices.
SCAP
SCAP Security Guide
Open-source policy baselines in machine-readable SCAP format for automated security audits.
OWASP
Product Security Guide
Guidance on building, testing, and procuring products with strong security & privacy focus.