Permalink
Switch branches/tags
Nothing to show
Find file Copy path
Fetching contributors…
Cannot retrieve contributors at this time
83 lines (54 sloc) 2.03 KB

DefectDojo's Documentation

/_static/dashboard.png

About DefectDojo

What is DefectDojo?

/_static/bug-2x.png

DefectDojo is a security tool that automates application security vulnerability management. DefectDojo streamlines the application security testing process by offering features such as importing third party security findings, merging and de-duping, integration with Jira, templating, report generation and security metrics.

What does DefectDojo do?

/_static/graph-2x.png

While traceability and metrics are the ultimate end goal, DefectDojo is a bug tracker at its core. Taking advantage of DefectDojo's Product:Engagement model, enables traceability among multiple projects and test cycles, and allows for fine-grained reporting.

How does DefectDojo work?

/_static/key-2x.png

DefectDojo is based on a model that allows the ultimate flexibility in your test tracking needs.

  • Working in DefectDojo starts with a Product Type.
  • Each Product Type can have one of more Products.
  • Each Product can have one or more Engagements.
  • Each Engagement can have one more Tests.
  • Each Test can have one or more Findings.

/_static/DD-Hierarchy.png

The code is open source, and available on github.

A demo installation can be found over at PythonAnywhere.

Our documentation is organized in the following sections:

User Documentation

.. toctree::
   :maxdepth: 2

   about
   getting-started
   integrations
   models
   start-using
   workflows
   upgrading
   running-in-production

Feature Documentation

.. toctree::
   :maxdepth: 2
   :glob:

   features

API Documentation

.. toctree::
   :maxdepth: 2
   :glob:

   api-docs