DefectDojo/django-DefectDojo

Features

• Vulnerability Management - Tracks and remediates security flaws by centralizing findings from various tools into a single management workflow.
• Vulnerability Management Systems - Provides a centralized platform for importing, deduplicating, and tracking security findings from multiple scanners.
• Relational Inventory Schemas - Uses a strongly typed relational database schema to structure security assets and vulnerability hierarchies for consistent reporting.
• Scan Data Importers - Ingests findings from multiple security tools to centralize vulnerability data in a single location.
• External Security Tool Integrations - Provides connectors to automatically ingest data and enrich findings from various third-party security scanning utilities.
• REST APIs - Exposes core functionality through a structured REST API for CI/CD pipeline integration and automated finding uploads.
• Security Posture Dashboards - Visualizes security risks and trends through dashboards and reports to monitor the overall organizational defense posture.
• Security Metrics Dashboards - Provides a Django-based web interface for visualizing security metrics and organizational risk posture.
• Asset Hierarchy Modeling - Organizes products and assets into a structured hierarchy to map the security posture of an organization.
• Security Finding Management - Normalizes and aggregates data from various security tools into a single report for prioritized remediation.
• Security Orchestration - Automates the ingestion and triage of security scan results across the software development lifecycle.
• Vulnerability Scanner Integrations - Connects multiple third-party security scanners and APIs to automatically ingest and consolidate vulnerability data.
• Vulnerability Lifecycle Managers - Implements workflows for managing the full lifecycle of security defects from discovery to remediation.
• Ingestion Parsers - Standardizes diverse security tool outputs into a common internal format using specialized ingestion parsers.
• Security Finding Deduplicators - Merges duplicate security findings from different scanners to reduce noise and prioritize remediation efforts.
• Issue Tracking Integrations - Synchronizes identified vulnerabilities with external issue trackers to coordinate remediation efforts across development teams.
• Security Testing Pipelines - Automates the discovery of vulnerabilities by integrating security testing directly into delivery pipelines.
• Role-Based Access Control - Manages system permissions by mapping users to specific roles that define access levels to organizational assets.
• Security Performance Metrics - Generates quantitative measurements of security posture and risk trends via dashboards.
• Vulnerability Report Generation - Produces detailed reports and dashboards from scan results to track remediation progress.
• Security Testing Orchestration - Coordinates the end-to-end process of security testing and vulnerability tracking.
• Security Orchestration - Platform for security orchestration and vulnerability management.
• Vulnerable Applications - Open-source vulnerability correlation and security orchestration tool.

Star history