DefectDojo is a security program and vulnerability management tool. It allows you to manage your application security program, maintain product and application information, schedule scans, triage vulnerabilities and push findings into defect trackers. Consolidate your findings into one source of truth with the tool.
Demo
Try out it in our testing environment with the following credentials.
Also Read – CHAOS : PoC that Allow Generate Payloads & Control Remote OS
Quick Start
git clone https://github.com/DefectDojo/django-DefectDojo
cd django-DefectDojo
docker-compose up
Navigate to http://localhost:8080.
Documentation
For detailed documentation you can visit Read the Docs.
Installation Options
Getting Started
We recommend checking out the about document to learn the terminology of the tool and the getting started guide for setting up a new installation.
We’ve also created some example workflows that should give you an idea of how to use it for your own team.
Client APIs
pip install defectdojo_api or clone the repository.Available Plugins
bomber is an application that scans SBOMs for security vulnerabilities. So you've asked a vendor…
Embed a payload within a PNG file by splitting the payload across multiple IDAT sections.…
Exploit-Street, where we dive into the ever-evolving world of cybersecurity with a focus on Local…
Shadow Dumper is a powerful tool used to dump LSASS (Local Security Authority Subsystem Service)…
shadow-rs is a Windows kernel rootkit written in Rust, demonstrating advanced techniques for kernel manipulation…
Extract and execute a PE embedded within a PNG file using an LNK file. The…