Dojo Community celebrates 10th anniversary as open-source software and receives major updates as company launches new contributor awards program

AUSTIN, Texas: #cybersecurity--DefectDojo, the pioneer in scalable unified vulnerability management and DevSecOps, today announced its first-ever Community Month with a number of product updates, new initiatives to recognize the platform’s major open-source contributors and a greater presence at events designed for open-source cybersecurity professionals. As the only open-source solution in the ASPM (application security posture management) space, DefectDojo’s commitment to ongoing open-source and community support underscores its belief that actionable security programs should be available to everyone.

To further empower the DevSecOps community, DefectDojo has rolled out improvements to its open-source OWASP Edition. These include improvements to the accuracy of automated deduplication, a key feature to reduce alert fatigue among cybersecurity professionals using the platform. The platform’s Jira integration and filtering functions have also been improved, streamlining workflow and allowing for more granular sorting of data for a clearer timeline of a particular finding or vulnerability.

In addition, the OWASP Edition now supports the Exploit Prediction Scoring System. EPSS is a global feed that estimates the likelihood of a specific vulnerability being exploited based on actual exploitation rates and history.

To recognize the contributors helping make Dojo Community a stronger platform, DefectDojo has launched its first-ever set of Community Awards and a new contributor program. The four tiers of the program recognize first-time contributors all the way up to the Hall of Fame. Contributors can also earn exclusive rewards from DefectDojo such as stickers, shirts and free access to the Pro Edition.

“10 years ago, we intentionally launched DefectDojo as an open-source project, and our commitment to open-source has been integral to our success. Without over a decade of collaboration between cybersecurity experts around the world, we simply wouldn’t be where we are today. Community Month is a celebration of everyone who has contributed to DefectDojo over the years, a chance for us to show our gratitude and an opportunity to remind developers we are in the open-source space for the long haul,” said Greg Anderson, CEO of DefectDojo. “Good cybersecurity should not be a luxury. With DefectDojo, it doesn’t have to be.”

To further support onboarding and use of its open-source resources, DefectDojo will increase its presence at both in-person and virtual events, providing opportunities for both education and community-building. This includes ongoing support of the OWASP Foundation community, a major source of open-source cybersecurity tools and platforms. DefectDojo will sponsor a slate of chapter meetings, including in Austin and Los Angeles, regional conferences like SnowFROC and Boston Application Security Conference and Global AppSec Conferences in the EU and North America.

For virtual events and official community support, DefectDojo has added new community resources on its OWASP Slack channel led by Paul Osinski. Osinski and his team will offer assistance and advice to users to get the most out of the OWASP Edition. CTO Matt Tesauro will continue to host monthly office hours events, which always include an open question and answer session.

With over 38 million downloads, DefectDojo’s community of customers and users encompasses security professionals spanning from Fortune 10 companies to solo consultants. The platform offers a comprehensive approach to both managing and improving security posture by aggregating data from various security tools, distilling and automatically triaging the results, automating workflows, and delivering actionable insights to ensure vulnerabilities are effectively identified, tracked, prioritized, and mitigated across the entire organization.

To become part of the open-source community, visit DefectDojo on GitHub and join the dedicated channel on the OWASP Slack; to inquire about the Pro Edition or become a customer, contact hello@defectdojo.com.

About DefectDojo

DefectDojo is the engine that drives DevSecOps, providing an open, scalable platform that connects security strategy to execution. By aggregating data from any security tool, automating manual processes, and delivering AI-powered insights, DefectDojo empowers organizations to have a unified view of security posture, automate operations to increase productivity and improve decision-making. For more information, visit defectdojo.com

Fonte: Business Wire