The OWASP Open Source project “OpenCRE “ links all security standards and guidelines together at the level of requirements into one harmonized resource: threats, weaknesses, what to verify, how to program, how to test, which tool settings, in-depth discussion, training material. Everything organized.
Examples of use:
- CRE 764-507 : the central ‘multilink’ feature of OpenCRE - one link to a common requirement shows its coverage in all the resources plus related requirements
- CRE 581-525
- OpenCRE Chat to ask any security question. In collaboration with Google, we injected all the standards in OpenCRE into an AI model to create the world's first security-specialized chatbot. It provides a more reliable answer, and also a reference to the relevant standard text.
- Map Analysis to find how any two standards connect with eachother
- www.opencre.org/smartlink/standard/CWE/611: the ‘smartlink’ feature which uses an existing standard to link to related information
- OWASP Top 10 2021
- Browse to explore our catalog (semantic web) of common requirements across development processes, technical controls, etc.
- Explore our catalog in one list
- Fly through our catalog in 3D