This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org
Difference between revisions of "OWASP DefectDojo Project"
(→Licensing) |
(→Project About) |
||
| Line 135: | Line 135: | ||
| project_name =OWASP DefectDojo | | project_name =OWASP DefectDojo | ||
| project_description =OWASP DefectDojo is an open source vulnerability management tool that streamlines the testing process by offering templating, report generation, metrics, and baseline self-service tools. | | project_description =OWASP DefectDojo is an open source vulnerability management tool that streamlines the testing process by offering templating, report generation, metrics, and baseline self-service tools. | ||
| − | | project_license = [https://github.com/rackerlabs/django-DefectDojo/blob/master/LICENSE.md Simplified | + | | project_license = [https://github.com/rackerlabs/django-DefectDojo/blob/master/LICENSE.md BSD Simplified License] |
| leader_name1=Greg Anderson | | leader_name1=Greg Anderson | ||
| leader_email1=greg.anderson@owasp.org | | leader_email1=greg.anderson@owasp.org | ||
Revision as of 02:26, 31 March 2016
|
OWASP DefectDojo Tool ProjectAn open source vulnerability management tool that streamlines the testing process by offering templating, report generation, metrics, and baseline self-service tools. DefectDojo is a tracking tool written in Python / Django. DefectDojo was created in 2013 and open-sourced on March 13th, 2015. The project was started to optimize vulnerability tracking and make it less painful. The top goal of DefectDojo is reduce the amount of time security professionals spend logging vulnerabilities. DefectDojo tries to accomplish this be offering a templating system for vulnerabilities, imports for common vulnerability scanners, report generation, and metrics. DescriptionDefectDojo streamlines the testing process through several 'models' that an admin can manipulate with Python code. The core models include: 'engagements', 'tests' and 'findings'. DefectDojo has supplemental models that facilitate metrics, authentication, report generation, and tools. DefectDojo is written in Python 2.7 with Django 1.8. Testing or installing DefectDojo is easy. There is a live demo for interested parties to try Dojo here. If you decide to setup an instance of Dojo for your organization, we have developed a script that handles all dependencies, configures the database, and creates a super user. Complete installation instructions are found here. An complete walk-through can be found here. Documented example workflows can be found [1]. LicensingDefectDojo is licensed under the BSD Simplified License. Project ResourcesProject LeadersCharles Neill Related ProjectsClassifications
News and Events
| |||||||
