Skip to content

DefectDojo is an open-source application vulnerability correlation and security orchestration tool.

License

Notifications You must be signed in to change notification settings

soprasteria/django-DefectDojo

 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 

Repository files navigation

DefectDojo OWASP Flagship GitHub release YouTube Subscribe Twitter Follow

Documentation Status CII Best Practices

Screenshot of DefectDojo

DefectDojo is a security program and vulnerability management tool. DefectDojo allows you to manage your application security program, maintain product and application information, schedule scans, triage vulnerabilities and push findings into defect trackers. Consolidate your findings into one source of truth with DefectDojo.

Demo

Try out DefectDojo in our testing environment.

  • admin / defectdojo@demo#appsec
  • product_manager / defectdojo@demo#product

Quick Start

$ git clone https://github.com/DefectDojo/django-DefectDojo
$ cd django-DefectDojo
$ ./setup.bash
$ ./run_dojo.bash

navigate to 127.0.0.1:8000

Documentation

For detailed documentation you can visit Read the Docs.

Installation Options

Getting Started

We recommend checking out the about document to learn the terminology of DefectDojo and the getting started guide for setting up a new installation. We've also created some example workflows that should give you an idea of how to use DefectDojo for your own team.

DefectDojo Client API's

  • DefectDojo Python API: pip install defectdojo_api or clone the repository.

  • Browse the API on SwaggerHub. Swagger Status

Getting Involved

Slack

Realtime discussion is done in the OWASP Slack Channel, #defectdojo. Get Access.

Twitter

DefectDojo Twitter Account tweets project updates and changes.

Available Plugins

Engagement Surveys - A plugin that adds answerable surveys to engagements.

LDAP Integration

SAML Integration

Multi-Factor Auth

About Us

DefectDojo is maintained by:

Contributing

We greatly appreciate all of our contributors.

We would also like to highlight the contributions from Michael Dong and Fatimah Zohra who contributed to DefectDojo before it was open source.

Swag Rewards

If you fix an issue with the swag reward tag, we'll send you a shirt and some stickers!

Dojo tshirt front Dojo tshirt back

Support

Proceeds are used for testing, infrastructure, etc.

PayPal

Sponsors

Xing

Interested in becoming a sponsor and having your logo displayed? Please review our sponsorship information or email greg.anderson@owasp.org

License

DefectDojo is licensed under the BSD Simplified license

About

DefectDojo is an open-source application vulnerability correlation and security orchestration tool.

Resources

License

Security policy

Stars

Watchers

Forks

Packages

No packages published

Languages

  • Python 50.1%
  • HTML 46.3%
  • Shell 1.7%
  • CSS 1.1%
  • JavaScript 0.3%
  • XSLT 0.3%
  • Other 0.2%