Join us for a webinar, "The CISO Workshop on API Threat Modeling
Join us for a webinar, "The CISO Workshop on API Threat Modeling
Join us for a webinar, "The CISO Workshop on API Threat Modeling
Join us for a webinar, "The CISO Workshop on API Threat Modeling
Join us for a webinar, "The CISO Workshop on API Threat Modeling
Join us for a webinar, "The CISO Workshop on API Threat Modeling
Close
Privacy settings
We use cookies and similar technologies that are necessary to run the website. Additional cookies are only used with your consent. You can consent to our use of cookies by clicking on Agree. For more information on which data is collected and how it is shared with our partners please read our privacy and cookie policy: Cookie policy, Privacy policy
We use cookies to access, analyse and store information such as the characteristics of your device as well as certain personal data (IP addresses, navigation usage, geolocation data or unique identifiers). The processing of your data serves various purposes: Analytics cookies allow us to analyse our performance to offer you a better online experience and evaluate the efficiency of our campaigns. Personalisation cookies give you access to a customised experience of our website with usage-based offers and support. Finally, Advertising cookies are placed by third-party companies processing your data to create audiences lists to deliver targeted ads on social media and the internet. You may freely give, refuse or withdraw your consent at any time using the link provided at the bottom of each page.
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.

Data-Driven
Security Research

Wallarm supports OWASP and other organizations which have a big impact in the software security space. Wallarm has provided ideas on how a statistical approach can be used to build the OWASP Top-10 list. This repository includes code, data and calculation methodology. This analysis and recommendation is based on 4,640,807 public security reports and bulletins from more than 125 sources, including HackerOne bug bounty reports, CVE, NVD, and exploits collections.

    Explore GitHub

    Features

    4.6M+ reports analyzed

    Comprehensive analysis of millions of security bulletins.

    Clouds Icon

    125+ data sources

    Aggregates data from diverse security information sources.

    Statistical methodology

    Data-driven approach to identify top security risks.

    Open calculation approach

    Transparent methodology with publicly available code.

    HackerOne bug bounty data

    Real-world vulnerability insights from bug bounties.

    CVE and NVD integration

    Incorporates official vulnerability databases and exploits.