DefectDojo is an association vulnerabilityof open applications code and security application.
It allows you to manage your application security program, maintain them information προϊόντων και εφαρμογών, να σαρώνετε χρονοδιαγράμματα, να ανακαλύπτετε τρωτά σημεία πρόσβασης και να προωθείτε τα ευρήματα που βρήκατε σε ανιχνευτές συστημάτων ασφαλείας.
While traceability and metrics are the ultimate goal, DefectDojo is a debugger at its core. The program allows traceability between multiple projects and test cycles and allows detailed reporting.
How does DefectDojo work?
DefectDojo is based on a model that allows absolute flexibility in testing needs.
- DefectDojo starts with a product type.
- Each product type can have one or more products.
- Each product may have one or more commitments.
- Each commitment can have a test.
- Each Test may have one or more findings
Installation
$ git clone https://github.com/DefectDojo/django-DefectDojo $ cd django-DefectDojo $ ./setup.bash $ ./run_dojo.bash
Application snapshots
You will find a user guide for the program here.