Link Check results for owasp.org

Last checked: June 21, 2025 12:15:46

Check URL: https://owasp.org/www-project-web-security-testing-guide/

If you've submitted a new scan request, please refresh after 10 minutes to check the results.

Page Info

URL: https://owasp.org/www-project-web-security-testing-guide/
Title: OWASP Web Security Testing Guide | OWASP Foundation
Favicon:

Host Info

Domain: owasp.org
Server: cloudflare
Country: United States
IP: 104.22.27.77
ASN: 13335 (CLOUDFLARENET)

Technologies

Varnish
Amazon Web Services
GitHub Pages
jQuery
HSTS
Google Analytics
Fastly
Cloudflare
Amazon SES
Amazon S3

SSL Info

HTTPS: Yes
Certificate Issuer: WE1
Valid From: 2025-05-20 21:48:30
Valid To: 2025-08-18 22:48:07
Subject Name: owasp.org

Statistics

Total Requests: 36
Total Transfer Size: 835.16 KB
Total Content Size: 1.14 MB
Domains: 7
IP Addresses: 7

Headers

access-control-allow-origin: *

age: 558

cache-control: max-age=600

cf-cache-status: DYNAMIC

cf-ray: 95336f1a8d5d66a7-MAD

content-encoding: br

content-security-policy: default-src 'self' https://*.fontawesome.com https://api.github.com https://*.githubusercontent.com https://*.google-analytics.com https://owaspadmin.azurewebsites.net https://*.twimg.com https://platform.twitter.com https://www.youtube.com https://*.doubleclick.net; frame-ancestors 'self'; frame-src https://*.vuejs.org https://*.stripe.com https://*.wufoo.com https://*.sched.com https://*.google.com https://*.twitter.com https://www.youtube.com https://w.soundcloud.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://viewer.diagrams.net https://fonts.googleapis.com https://*.fontawesome.com https://app.diagrams.net https://cdnjs.cloudflare.com https://cse.google.com https://*.vuejs.org https://*.stripe.com https://*.wufoo.com https://*.youtube.com https://*.meetup.com https://*.sched.com https://*.google-analytics.com https://unpkg.com https://buttons.github.io https://www.google.com https://*.gstatic.com https://*.twitter.com https://*.twimg.com; style-src 'self' 'unsafe-inline' https://*.gstatic.com https://cdnjs.cloudflare.com https://www.google.com https://fonts.googleapis.com https://platform.twitter.com https://*.twimg.com data:; font-src 'self' https://*.fontawesome.com fonts.gstatic.com; manifest-src 'self' https://pay.google.com; img-src 'self' https://*.globalappsec.org https://render.com https://*.render.com https://okteto.com https://*.okteto.com data: www.w3.org https://*.bestpractices.dev https://licensebuttons.net https://img.shields.io https://*.twitter.com https://github.githubassets.com https://*.twimg.com https://platform.twitter.com https://*.githubusercontent.com https://*.vercel.app https://*.cloudfront.net https://*.coreinfrastructure.org https://*.securityknowledgeframework.org https://badges.gitter.im https://travis-ci.org https://api.travis-ci.org https://s3.amazonaws.com https://snyk.io https://coveralls.io https://requires.io https://github.com https://*.googleapis.com https://*.google.com https://*.gstatic.com

content-type: text/html; charset=utf-8

date: Sat, 21 Jun 2025 12:15:54 GMT

expires: Sat, 21 Jun 2025 10:04:25 GMT

last-modified: Sat, 26 Apr 2025 18:09:56 GMT

permissions-policy: geolocation=(self)

referrer-policy: same-origin

server: cloudflare

strict-transport-security: max-age=31536000; includeSubDomains

vary: Accept-Encoding

via: 1.1 varnish

x-cache: HIT

x-cache-hits: 0

x-content-type-options: nosniff

x-fastly-request-id: 789345a5a05daf430c783b814a107a01b626e522

x-frame-options: SAMEORIGIN

x-github-request-id: 89F8:383F26:19B98BE:19F49D1:68568151

x-proxy-cache: MISS

x-served-by: cache-mad2200131-MAD

x-timer: S1750508154.078488,VS0,VE1

Detailed Technologies

Name	Category	Description
Varnish	Caching	Varnish is a reverse caching proxy.
Amazon Web Services	PaaS	Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.
GitHub Pages	PaaS	GitHub Pages is a static site hosting service.
jQuery	JavaScript libraries	jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.
HSTS	Security	HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.
Google Analytics	Analytics	Google Analytics is a free web analytics service that tracks and reports website traffic.
Fastly	CDN	Fastly is a cloud computing services provider. Fastly's cloud platform provides a content delivery network, Internet security services, load balancing, and video & streaming services.
Cloudflare	CDN	Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
Amazon SES	Email	Amazon Simple Email Service (SES) is an email service that enables developers to send mail from within any application.
Amazon S3	CDN	Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.

External Links

Label	URL
instructions how to enable JavaScript in your web browser	http://turnonjs.com/
Contribute to projects...	https://nest.owasp.dev/projects/contribute
OWASP AI Exchange	https://owaspai.org/
OWASP CycloneDX Secure Bill of Materials	https://cyclonedx.org/
Start a New Project...	https://owasporg.atlassian.net/servicedesk/customer/portal/7/create/70?src=-1419759666
Start a Local Chapter...	https://owasporg.atlassian.net/servicedesk/customer/portal/8/group/20/create/90?src=-1419759666
OWASP Global AppSec USA 2025 - Washington, DC	https://owasp.glueup.com/event/owasp-2025-global-appsec-usa-washington-dc-131624/
OWASP AppSec Days New Zealand 2025	https://appsec.org.nz/conference/
OWASP AppSec Days Singapore 2025	http://singapore.appsecdays.org/
OWASP AppSec Days France 2025	https://owaspappsecdays.fr/
OWASP AppSec Day Bangalore 2025	https://bangalore.appsecdays.org/
OWASP LASCON 2025	https://lascon.org/
OWASP AppSec Days Uruguay 2025	https://owasp-uruguay.github.io/
OWASP BeNeLux 2025	https://2025.owaspbenelux.eu/?utm_source=owasp-web&utm_medium=event-page&utm_campaign=none
Membership Portal	https://owasp.glueup.com
Video	https://www.youtube.com/user/OWASPGLOBAL/videos
Link	https://creativecommons.org/licenses/by-sa/4.0/
Link	https://github.com/OWASP/wstg/
@owasp_wstg	https://twitter.com/owasp_wstg
our official GitHub repository	https://github.com/OWASP/wstg
read the latest development documents in our official GitHub repository	https://github.com/OWASP/wstg/tree/master/document
Download the v4.2 PDF	https://github.com/OWASP/wstg/releases/download/v4.2/wstg-v4.2.pdf
Download the v4.1 PDF	https://github.com/OWASP/wstg/releases/download/v4.1/wstg-v4.1.pdf
available for purchase	https://www.lulu.com/shop/matteo-meucci-and-andrew-muller/testing-guide-40-release/paperback/product-22294314.html
GitHub Issues	https://github.com/OWASP/wstg/issues
invitation link	https://owasp-slack.herokuapp.com/
channel, #testing-guide	https://app.slack.com/client/T04T40NHX/CJ2QDHLRJ
Edit on GitHub	https://github.com/OWASP/www-project-web-security-testing-guide/blob/master/index.md
Code of Conduct	https://github.com/OWASP/wstg/blob/master/CODE_OF_CONDUCT.md
Contribution Guide	https://github.com/OWASP/wstg/blob/master/CONTRIBUTING.md
@owasp-wstg.bsky.social	https://bsky.app/profile/owasp-wstg.bsky.social
Link	http://www.zengroup.co.in
Link	http://promon.co
Link	https://www.tenable.com
Link	https://www.scsk.jp/
Link	https://www.microfocus.com/en-us/cyberres/application-security
Link	https://www.scitum.com.mx/
Link	https://infosecmap.com
Link	https://www.arnica.io
Link	https://www.zimperium.com/
github organization	https://github.com/OWASP/
facebook group	https://www.facebook.com/OWASPFoundation
mastodon account	https://infosec.exchange/@owasp
twitter account	https://twitter.com/owasp
linkedin account	https://www.linkedin.com/company/owasp/
youtube account	https://www.youtube.com/user/OWASPGLOBAL

Requested Domains

Domain	Type	Categories
api.github.com	N/A	N/A
buttons.github.io	N/A	N/A
github.githubassets.com	N/A	N/A
img.shields.io	N/A	N/A
licensebuttons.net	N/A	N/A
owasp.org	Apex domain	Education, Education, Information Security, Internet Communication, Politics, Advocacy, and Government-Related, Government & Politics
www.google-analytics.com	N/A	N/A