Explore the world
of cyber security

Driven by volunteers, OWASP resources are accessible for everyone.

OWASP x Google Summer of Code 2025 - Enabling 15 opportunities for impact

image

Starr Brown, May 12, 2025

We’re proud to share that OWASP is once again an official mentoring organization for Google Summer of Code (GSoC) 2025—and this year, we’ve secured 15 contributor slots across some of the most impactful open-source security projects in the world.

This milestone reinforces OWASP’s ongoing commitment to open-source innovation and highlights the strength of our global community of mentors and contributors, as well as our commitment to education-by-doing with the GSoC program.

🔧 GSoC 2025: What’s on Deck?

Contributors will get hands-on experience improving and expanding some of OWASP’s most vital tools:

  • Juice Shop – A globally-used, intentionally insecure web app for security training.
  • Nettacker – A fast, automated network scanner built for vulnerability detection.
  • Offensive Web Testing Framework (OWTF) – A smart framework for streamlined penetration testing.
  • Bug Logging Tool (BLT) – A next-gen bug tracker focused on gamification to incentivize bug and security reporting.
  • Nest – Core infrastructure to power and enable the OWASP projects and contributors ecosystem.
  • PyGoat – A Python-based sandbox for learning and exposing security flaws in modern stacks.
  • OpenCRE – A collaborative cybersecurity knowledge base & reference system.

🚀 What’s Next?

Selected contributors will begin collaborating with mentors to level up these tools and help push open-source security forward.

🙌 Thank You

Huge thanks to our project leads, mentors, contributors, and the OWASP community who made this year’s GSoC application a success. Let’s make this summer one to remember!

Starr Brown & Fabio Cerullo, OWASP GSoC Admins

...read more

Upcoming at OWASP

Quick access to our highlighted
flagship resources
See all flagship resources(15)
Documentation
Top Ten
The reference standard for the most critical web application security risks
Documentation
ASVS
Application security verification standard
Documentation
Cheat Sheets
List of crucial app security information
Have an idea for a project?
Take advantage of our resources and
let it grow with OWASP.
Start a project
'; html += '
'; html += getBoxContent(projects[bigpick], "box1"); html += getBoxContent(projects[pick2], "box2"); html += getBoxContent(projects[pick3], "box3"); html += '
'; $('.outer').html(html); }); function getProjectMediaText(project) { mediaret = ["unknown","unknown"] for(ndx in gMedia){ if(project.url.indexOf(gMedia[ndx].repo) > -1){ mediaret[0] = gMedia[ndx].shortname; mediaret[1] = gMedia[ndx].mediablurb; break; } } if(mediaret[0] == "unknown"){ alert(project.url); } return mediaret; } function getProjectContent(project, boxtype) { pstitle = 'pstitle'; psdesc = 'psdesc'; psnav = 'psnav'; if(boxtype != 1){ pstitle += '2'; psdesc += '2'; psnav += '2'; } media = getProjectMediaText(project) var html = '
' + project.type + '
'; html += '
' + media[0] + '
'; // this needs to change to shortname html += '
' + media[1] + '
'; // this needs to change to shorttext once it exists html += '
'; html += '
'; html += '
'; return html; } function getBoxContent(project, box) { var html = '
'; boxtype = 1; if(box == "box1"){ html += '
'; boxtype = 1; } else { html += '
'; if (box == "box2"){ boxtype = 2; } else { boxtype = 3; } } html += getProjectContent(project, boxtype); html += '
'; html += '
'; return html; }

Recent OWASP News & Opinions

Upcoming Conferences