-
Notifications
You must be signed in to change notification settings - Fork 9
/
index.html
573 lines (491 loc) · 23.6 KB
/
index.html
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393
394
395
396
397
398
399
400
401
402
403
404
405
406
407
408
409
410
411
412
413
414
415
416
417
418
419
420
421
422
423
424
425
426
427
428
429
430
431
432
433
434
435
436
437
438
439
440
441
442
443
444
445
446
447
448
449
450
451
452
453
454
455
456
457
458
459
460
461
462
463
464
465
466
467
468
469
470
471
472
473
474
475
476
477
478
479
480
481
482
483
484
485
486
487
488
489
490
491
492
493
494
495
496
497
498
499
500
501
502
503
504
505
506
507
508
509
510
511
512
513
514
515
516
517
518
519
520
521
522
523
524
525
526
527
528
529
530
531
532
533
534
535
536
537
538
539
540
541
542
543
544
545
546
547
548
549
550
551
552
553
554
555
556
557
558
559
560
561
562
563
564
565
566
567
568
569
570
571
572
573
<!DOCTYPE html>
<html lang="en">
<head>
<meta charset="utf-8">
<title>DefectDojo | CI/CD and DevSecOps Automation</title>
<meta content="width=device-width, initial-scale=1.0" name="viewport">
<meta content="appsecpipeline, open source, source of truth, application security, appsec, enterprise vulnerability management, web vulnerability scanner, vulnerability management software, vulnerability correlation" name="keywords">
<meta content="DefectDojo is an open-source application vulnerability management correlation and security orchestration tool. Scale security by creating an AppSecPipeline with DefectDojo." name="description">
<!-- Favicons -->
<link href="img/favicon.ico" rel="icon">
<!-- Google Fonts -->
<link href="https://fonts.googleapis.com/css?family=Montserrat:300,400,500,700|Open+Sans:300,300i,400,400i,700,700i" rel="stylesheet">
<!-- Bootstrap CSS File -->
<link href="lib/bootstrap/css/bootstrap.min.css" rel="stylesheet">
<!-- Libraries CSS Files -->
<link href="lib/animate/animate.min.css" rel="stylesheet">
<link href="lib/font-awesome/css/font-awesome.min.css" rel="stylesheet">
<link href="lib/ionicons/css/ionicons.min.css" rel="stylesheet">
<link href="lib/magnific-popup/magnific-popup.css" rel="stylesheet">
<!-- Main Stylesheet File -->
<link href="css/style.css" rel="stylesheet">
<link rel="stylesheet" type="text/css" href="//cdnjs.cloudflare.com/ajax/libs/cookieconsent2/3.1.0/cookieconsent.min.css" />
<script src="//cdnjs.cloudflare.com/ajax/libs/cookieconsent2/3.1.0/cookieconsent.min.js"></script>
<script>
window.addEventListener("load", function(){
window.cookieconsent.initialise({
"palette": {
"popup": {
"background": "#252e39"
},
"button": {
"background": "#14a7d0"
}
},
"theme": "edgeless"
})});
</script>
<!-- Global site tag (gtag.js) - Google Analytics -->
<script async src="https://www.googletagmanager.com/gtag/js?id=UA-124190882-1"></script>
<script>
window.dataLayer = window.dataLayer || [];
function gtag(){dataLayer.push(arguments);}
gtag('js', new Date());
gtag('config', 'UA-124190882-1');
</script>
<script type="application/ld+json">
[
{
"@context" : "http://schema.org",
"@type" : "SoftwareApplication",
"alternateName": "DevSecOps / AppSecPipeline",
"name" : "DefectDojo",
"image" : "https://www.defectdojo.org/img/product-screen-3.png",
"url" : "https://www.defectdojo.org/",
"applicationCategory" : "Application Security Software",
"operatingSystem" : "Linux",
"downloadUrl" : "https://github.com/DefectDojo/django-DefectDojo",
"screenshot" : "https://www.defectdojo.org/img/product-screen-1.png"
},
{
"@context": "http://schema.org",
"@type": "Organization",
"url": "http://www.defectdojo.org",
"logo": "http://www.defectdojo.org/img/chop.png"
},
{
"@context": "http://schema.org",
"@type": "Person",
"name": "DefectDojo",
"url": "https://www.defectdojo.org/",
"sameAs": [
"https://twitter.com/defectdojo",
"https://www.youtube.com/channel/UCWw9qzqptiIvTqSqhOFuCuQ"
]
},
{
"@context": "http://schema.org",
"@type": "BreadcrumbList",
"itemListElement": [{
"@type": "ListItem",
"position": 1,
"item": {
"@id": "https://www.defectdojo.org/#team",
"name": "Core Team"
}
},{
"@type": "ListItem",
"position": 2,
"item": {
"@id": "https://www.defectdojo.org/#about",
"name": "About DefectDojo"
}
},{
"@type": "ListItem",
"position": 3,
"item": {
"@id": "https://www.defectdojo.org/#gallery",
"name": "Screenshots"
}
},{
"@type": "ListItem",
"position": 4,
"item": {
"@id": "https://www.defectdojo.org/#features",
"name": "Features"
}
}]
}
]
</script>
</head>
<body>
<!--==========================
Header
============================-->
<header id="header">
<div class="container">
<div id="logo" class="pull-left" style="position: relative;">
<h1>
<a href="#intro" class="scrollto">DefectDojo</a>
<a href="https://opensourcesecurityindex.io/"
target="_blank"
rel="noopener">
<img
style="width: 90%; position: relative; margin: 0; position: absolute; top: 43%; padding-left: 7%; -ms-transform: translateY(-50%); transform: translateY(-50%);"
src="https://opensourcesecurityindex.io/badge.svg"
alt="Open Source Security Index - Fastest Growing Open Source Security Projects"/>
</a>
</h1>
<!-- Uncomment below if you prefer to use an image logo -->
<!-- <a href="#intro"><img src="img/logo.png" alt="" title=""></a> -->
</div>
<nav id="nav-menu-container">
<ul class="nav-menu">
<li class="menu-active"><a href="#intro">Home</a></li>
<li><a href="#about">Get Started</a></li>
<li><a href="#features">Features</a></li>
<li><a href="#gallery">Screenshots</a></li>
<li><a href="#call-to-action">Contact</a></li>
</ul>
</nav><!-- #nav-menu-container -->
</div>
</header><!-- #header -->
<!--==========================
Intro Section
============================-->
<section id="intro">
<div class="intro-text">
<h2>Open Source DevSecOps</h2>
<p>The leading application vulnerability management tool.<br> Built for both DevSecOps and traditional application security.</p>
<a href="#about" class="btn-get-started scrollto">Get Started</a>
</div>
<div class="product-screens">
<div class="product-screen-1 wow fadeInUp" data-wow-delay="0.4s" data-wow-duration="0.6s">
<img src="img/product-screen-1.png" alt="">
</div>
<div class="product-screen-2 wow fadeInUp" data-wow-delay="0.2s" data-wow-duration="0.6s">
<img src="img/product-screen-2.png" alt="">
</div>
<div class="product-screen-3 wow fadeInUp" data-wow-duration="0.6s">
<img src="img/product-screen-3.png" alt="">
</div>
</div>
</section><!-- #intro -->
<main id="main">
<!--==========================
About Us Section
============================-->
<section id="about" class="section-bg">
<div class="container-fluid">
<div class="section-header">
<h3 class="section-title">Get Started</h3>
<span class="section-divider"></span>
<p class="section-description">
DefectDojo has a variety of installation options.
</p>
</div>
<div class="row">
<div class="col-lg-6 about-img wow fadeInLeft">
<img src="img/defect-dojo-by-the-beach.jpg" alt="">
</div>
<div class="col-lg-6 content wow fadeInRight">
<h2>Built by Application Security Engineers</h2>
<h3>DefectDojo is an open-source OWASP Flagship Project.</h3>
<p>
Take DefectDojo for a spin! A <a href="https://demo.defectdojo.org" alt="DefectDojo Demo">live demo</a> is available.
<a href="https://github.com/DefectDojo/django-DefectDojo#demo" alt="DefectDojo Credentials">Credentials</a> for login. <br><b>Please note:</b> The instance is reset every hour, and must be used for test purposes only, as all data is public.
</p>
<ul>
<li><i class="ion-android-checkmark-circle"></i> DefectDojo is available on <a href="https://github.com/DefectDojo/django-DefectDojo" alt="Github install">GitHub</a>.</li>
<li><i class="ion-android-checkmark-circle"></i> <a href="https://www.defectdojo.com/pricing">Checkout our SaaS</a> which includes additional features and support.</li>
</ul>
<p>
</p>
</div>
</div>
</div>
</section><!-- #about -->
<!--==========================
Product Featuress Section
============================-->
<section id="features">
<div class="container">
<div class="row">
<div class="col-lg-8 offset-lg-4">
<div class="section-header wow fadeIn" data-wow-duration="1s">
<h3 class="section-title">Product Features</h3>
<span class="section-divider"></span>
</div>
</div>
<div class="col-lg-4 col-md-5 features-img">
<img src="img/features-img.png" alt="" class="wow fadeInLeft">
</div>
<div class="col-lg-8 col-md-7 ">
<div class="row">
<div class="col-lg-6 col-md-6 box wow fadeInRight">
<div class="icon"><i class="ion-ios-speedometer-outline"></i></div>
<h4 class="title"><a href="">Vulnerability Management</a></h4>
<p class="description">DefectDojo integrates with 150+ security tools.</p>
</div>
<div class="col-lg-6 col-md-6 box wow fadeInRight" data-wow-delay="0.1s">
<div class="icon"><i class="ion-bug"></i></div>
<h4 class="title"><a href="">JIRA Integration</a></h4>
<p class="description">DefectDojo has bi-directional integration with JIRA.</p>
</div>
<div class="col-lg-6 col-md-6 box wow fadeInRight data-wow-delay="0.2s">
<div class="icon"><i class="ion-social-buffer-outline"></i></div>
<h4 class="title"><a href="">Automated Deduplication</a></h4>
<p class="description">DefectDojo has algorithms that learn overtime to automatically reduce noise and distill results.</p>
</div>
<div class="col-lg-6 col-md-6 box wow fadeInRight" data-wow-delay="0.3s">
<div class="icon"><i class="ion-android-sync"></i></div>
<h4 class="title"><a href="">CI/CD</a></h4>
<p class="description">Integrate security testing with your CI/CD to instantly know the state of your software security.</p>
</div>
</div>
</div>
</div>
</div>
</section><!-- #features -->
<!--==========================
Product Advanced Featuress Section
============================-->
<section id="advanced-features">
<div class="features-row section-bg">
<div class="container">
<div class="row">
<div class="col-12">
<img class="advanced-feature-img-right wow fadeInRight" src="img/advanced-feature-1.png" alt="">
<div class="wow fadeInLeft">
<h2>CI/CD Automation and Tracking</h2>
<h3>Know exactly when new vulnerabilities are introduced in a build or remediated.</h3>
<p> Use DefectDojo's API to record security tests that are run on each build.</p><p>DefectDojo has the ability to track the build id, commit hash, branch or tag, orchestration server, source code repo and build server for every on demand security test.</p>
</div>
</div>
</div>
</div>
</div>
<div class="features-row">
<div class="container">
<div class="row">
<div class="col-12">
<img class="advanced-feature-img-left" src="img/advanced-feature-2.png" alt="">
<div class="wow fadeInRight">
<h2>Vulnerability Management Features</h2>
<i class="ion-pie-graph" class="wow fadeInRight" data-wow-duration="0.2s"></i>
<p class="wow fadeInRight" data-wow-duration="0.5s">DefectDojo provides reporting at every level including tests, engagements, and products. DefectDojo offers a variety of metrics to gain visibility into vulnerability trends and insights within your organization</p>
<i class="ion-merge" class="wow fadeInRight" data-wow-duration="0.4s"></i>
<p class="wow fadeInRight" data-wow-duration="0.5s">Similar findings can be easily merged into a single finding to provide developers all security issues in one ticket.</p>
<i class="ion-ios-paper wow fadeInRight" data-wow-delay="0.2s" data-wow-duration="0.5s"></i>
<p class="wow fadeInRight" data-wow-delay="0.2s" data-wow-duration="0.5s">Remediation and finding templates can be created by CWE so that remediation advice is consistent across all reported findings. Build and customize remediation advice based on your companies requirements.</p>
<i class="ion-ios-clock wow fadeInRight" data-wow-delay="0.4" data-wow-duration="0.5s"></i>
<p class="wow fadeInRight" data-wow-delay="0.4s" data-wow-duration="0.5s">Set remediation SLAs based on the criticality of your findings and view the remainder of days to remediate.</p>
<i class="ion-android-checkmark-circle wow fadeInRight" data-wow-delay="0.4" data-wow-duration="0.5s"></i>
<p class="wow fadeInRight" data-wow-delay="0.4s" data-wow-duration="0.5s">Set thresholds for determining the grade of your product so that a scorecard of product health can be seen at a glance.</p>
</div>
</div>
</div>
</div>
</div>
<div class="features-row section-bg">
<div class="container">
<div class="row">
<div class="col-12">
<img class="advanced-feature-img-right wow fadeInRight" src="img/advanced-feature-3.png" alt="">
<div class="wow fadeInLeft">
<h2>Track Vital Product Information</h2>
<h3>All text fields support markdown to allow customized detailed information on each product.</p>
<i class="ion-ios-albums-outline"></i>
<p>DefectDojo supports tracking source code language composition, technologies, regulations such as PCI and GDPR, criticality, lifecycle, origin, revenue, user records and platform to name a few.</p>
</div>
</div>
</div>
</div>
</div>
</section><!-- #advanced-features -->
<!--==========================
Call To Action Section
============================-->
<section id="call-to-action">
<div class="container">
<div class="row">
<div class="col-lg-9 text-center text-lg-left">
<h3 class="cta-title">Take Your DevSecOps to 11</h3>
<p class="cta-text"> <b>Whether you're just starting your DevSecOps journey or you're a seasoned professional. The DefectDojo team can provide hands-on assistance with reaching your goals. Get in touch with us to discuss our commercial offerings.</b></p>
</div>
<div class="col-lg-3 cta-btn-container text-center">
<a class="cta-btn align-middle" href="https://www.defectdojo.com/contact">Meet the Creators</a>
</div>
</div>
</div>
</section><!-- #call-to-action -->
<!--==========================
More Features Section
============================-->
<section id="more-features" class="section-bg">
<div class="container">
<div class="section-header">
<h3 class="section-title">More Features</h3>
<span class="section-divider"></span>
<p class="section-description"></p>
</div>
<div class="row">
<div class="col-lg-6">
<div class="box wow fadeInLeft">
<div class="icon"><i class="ion-ios-bookmarks"></i></div>
<h4 class="title"><a href="">ASVS Benchmarks</a></h4>
<p class="description">Track your product proactively using OWASP's ASVS (Application Security Verification Standard Project) scoring standard. ASVS provides several checklists for security maturity.</p>
</div>
</div>
<div class="col-lg-6">
<div class="box wow fadeInRight">
<div class="icon"><i class="ion-link"></i></div>
<h4 class="title"><a href="">Endpoints</a></h4>
<p class="description">DefectDojo allows teams to review findings on an endpoint basis rather than an application basis, for teams that are infrastructure focused.<br><br></p>
</div>
</div>
<div class="col-lg-6">
<div class="box wow fadeInLeft">
<div class="icon"><i class="ion-code-working"></i></div>
<h4 class="title"><a href="">Custom Report Generation</a></h4>
<p class="description">If you need reporting for all of DefectDojo, a single product, a group of products or any subset of data, DefectDojo's filtering and report generation at multiple levels has you covered.</p>
</div>
</div>
<div class="col-lg-6">
<div class="box wow fadeInRight">
<div class="icon"><i class="ion-key"></i></div>
<h4 class="title"><a href="">Credential Manager</a></h4>
<p class="description">Credentials can be stored for each engagement which both streamlines the security testing process and makes retesting a breeze.</p>
</div>
</div>
</div>
</div>
</section><!-- #more-features -->
<!--==========================
Frequently Asked Questions Section
============================-->
<section id="faq">
<div class="container">
<div class="section-header">
<h3 class="section-title">Frequently Asked Questions</h3>
<span class="section-divider"></span>
</div>
<ul id="faq-list" class="wow fadeInUp">
<li>
<a data-toggle="collapse" href="#faq2" class="collapsed">Why create DefectDojo? <i class="ion-android-remove"></i></a>
<div id="faq2" class="collapse" data-parent="#faq-list">
<p>
As security professionals, prior to DefectDojo, we too struggled to manage our programs and resources. DefectDojo is the result of sharpening the use case for security professionals, by securty professionals for over 10 years.
</p>
</div>
</li>
<li>
<a data-toggle="collapse" href="#faq3" class="collapsed">What is DefectDojo's relationship with OWASP? <i class="ion-android-remove"></i></a>
<div id="faq3" class="collapse" data-parent="#faq-list">
<p>
DefectDojo partners with the OWASP Foundation to release an open-source edition. The open-source edition is an OWASP Flagship Project.
</p>
</div>
</li>
<li>
<a data-toggle="collapse" href="#faq4" class="collapsed">Who uses DefectDojo? <i class="ion-android-remove"></i></a>
<div id="faq4" class="collapse" data-parent="#faq-list">
<p>
DefectDojo is used worldwide by large Fortune 100 companies to small businesses. The open-source edition of DefectDojo has 30M+ downloads.
</p>
</div>
</li>
<li>
<a data-toggle="collapse" href="#faq5" class="collapsed">Is hosting, custom integration, and commercial support available for DefectDojo? <i class="ion-android-remove"></i></a>
<div id="faq5" class="collapse" data-parent="#faq-list">
<p>
Yes, please <a style="display: inline; font-size: 1rem; font-weight: 400; line-height: 1.5; padding: 0;" href="https://www.defectdojo.com/pricing">checkout our SaaS</a>, contact us <a style="display: inline; font-size: 1rem; font-weight: 400; line-height: 1.5; padding: 0;" href="https://www.defectdojo.com/contact">through our website</a>, or simply reach out to us via email, info@defectdojo.com.
</p>
</div>
</li>
</ul>
</div>
</section><!-- #faq -->
<!--==========================
Gallery Section
============================-->
<section id="gallery">
<div class="container-fluid">
<div class="section-header">
<h3 class="section-title">Screenshots</h3>
<span class="section-divider"></span>
<p class="section-description">Sample DefectDojo screenshots</p>
</div>
<div class="row no-gutters">
<div class="col-lg-4 col-md-6">
<div class="gallery-item wow fadeInUp">
<a href="img/gallery/gallery-1.png" class="gallery-popup">
<img src="img/gallery/gallery-1.png" alt="">
</a>
</div>
</div>
<div class="col-lg-4 col-md-6">
<div class="gallery-item wow fadeInUp">
<a href="img/gallery/defectdojo-product-details.png" class="gallery-popup">
<img src="img/gallery/defectdojo-product-details.png" alt="">
</a>
</div>
</div>
<div class="col-lg-4 col-md-6">
<div class="gallery-item wow fadeInUp">
<a href="img/gallery/languages-defect.png" class="gallery-popup">
<img src="img/gallery/languages-defect.png" alt="">
</a>
</div>
</div>
<div class="col-lg-4 col-md-6">
<div class="gallery-item wow fadeInUp">
<a href="img/gallery/engagement.png" class="gallery-popup">
<img src="img/gallery/engagement.png" alt="">
</a>
</div>
</div>
<div class="col-lg-4 col-md-6">
<div class="gallery-item wow fadeInUp">
<a href="img/gallery/test.png" class="gallery-popup">
<img src="img/gallery/test.png" alt="">
</a>
</div>
</div>
<div class="col-lg-4 col-md-6">
<div class="gallery-item wow fadeInUp">
<a href="img/gallery/finding.png" class="gallery-popup">
<img src="img/gallery/finding.png" alt="">
</a>
</div>
</div>
</div>
</div>
</section><!-- #gallery -->
</main>
<!--==========================
Footer
============================-->
<footer id="footer">
<div class="container">
<div class="row">
<div class="col-lg-6 text-lg-left text-center">
<div class="copyright">
© 2018-2023 DefectDojo, Inc. All rights reserved. <br>DefectDojo is trademark of DefectDojo, Inc.
</div>
</div>
<div class="col-lg-6">
<nav class="footer-links text-lg-right text-center pt-2 pt-lg-0">
<a href="#intro" class="scrollto">Home</a>
</nav>
</div>
</div>
</div>
</footer><!-- #footer -->
<a href="#" class="back-to-top"><i class="fa fa-chevron-up"></i></a>
<!-- JavaScript Libraries -->
<script src="lib/jquery/jquery.min.js"></script>
<script src="lib/jquery/jquery-migrate.min.js"></script>
<script src="lib/bootstrap/js/bootstrap.bundle.min.js"></script>
<script src="lib/easing/easing.min.js"></script>
<script src="lib/wow/wow.min.js"></script>
<script src="lib/superfish/hoverIntent.js"></script>
<script src="lib/superfish/superfish.min.js"></script>
<script src="lib/magnific-popup/magnific-popup.min.js"></script>
<!-- Contact Form JavaScript File -->
<script src="contactform/contactform.js"></script>
<!-- Template Main Javascript File -->
<script src="js/main.js"></script>
</body>
</html>