| title | displaytext | layout | tab | order | tags |
|---|---|---|---|---|---|
asvsusers |
ASVS Users |
true |
7 |
asvs |
The CREST OWASP OVS Programme accredits companies that provide app security testing services to the application development industry. The testing to be performed is based on the ASVS (and MASVS) projects.
The App Defense Alliance has based its Cloud Application Security Assessment (CASA) program on the ASVS project.
A broad range of companies and agencies around the globe have added ASVS to their software assurance tool boxes, including:
- Booz Allen Hamilton
- CGI Federal
- Denim Group
- Etebaran Informatics
- Inspectiv - "We use ASVS in our pen tests in order to have a comprehensive, vendor neutral, guideline for testing the security of applications and websites."
- Minded Security
- Nixu
- NVISO - "We use the ASVS as a baseline for our Web Application Penetration Tests."
- Pensive Security
- ps_testware
- Proactive Risk
- Quince Associates Limited (SeeMyData)
- ReqView - "We use the ASVS as a document template in ReqView requirements management tool and demonstrate its usage in our Example project."
- Serviço Federal de Processamento de Dados (SERPRO)
- Universidad Distrital Francisco José de Caldas
Organizations listed are not accredited by OWASP. Neither their products or services have been endorsed by OWASP. Use of ASVS may include for example providing verification services using the standard. Use of ASVS may also include for example performing internal evaluation of products with the OWASP ASVS in mind, and NOT making any claims of meeting any given level in the standard. Please let us know how your organization is using OWASP ASVS. Include your name, organization's name, and brief description of how you use the standard. The project leads can be reached using the contact details on the main page.