A clean, searchable interface for exploring the OWASP Application Security Verification Standard 5.0.
This site makes it easier to work with the OWASP ASVS by providing an interactive table where you can search, filter, and sort all 345 security requirements. Each chapter includes detailed control objectives with links to relevant OWASP resources like the Cheat Sheet Series and Testing Guide.
It contains all 345 requirements from ASVS 5.0 across 17 security chapters
- V1: Encoding and Sanitization
- V2: Validation and Business Logic
- V3: Web Frontend Security
- V4: API and Web Service
- V5: File Handling
- V6: Authentication
- V7: Session Management
- V8: Authorization
- V9: Self-contained Tokens
- V10: OAuth and OIDC
- V11: Cryptography
- V12: Secure Communication
- V13: Configuration
- V14: Data Protection
- V15: Secure Coding and Architecture
- V16: Security Logging and Error Handling
- V17: WebRTC
The OWASP Application Security Verification Standard (ASVS) content is © 2008-2025 The OWASP Foundation and is licensed under the Creative Commons Attribution-ShareAlike 4.0 International License.
This website implementation is also shared under CC BY-SA 4.0 to maintain license compatibility.
See LICENSE for full details.