Overview
DefectDojo is an open-source DevSecOps and vulnerability management platform. This instance is made to be resilient and easy to setup with our new web installer. Please see the usage instructions for complete setup details and requirements. For more information, please visit: https://www.defectdojo.org/
Highlights
- DevSecOps and Vulnerability Management Platform
- Supports 150+ Security Scanners
- Automatic Duplicate and False Positive Management
Details
Sold by
Delivery method
Delivery option
64-bit (x86) Amazon Machine Image (AMI)
Latest version
Operating system
Ubuntu 20.04
Typical total price
This estimate is based on use of the seller's recommended configuration (t2.large) in the US East (N. Virginia) Region. View pricing details
$0.178/hour
Features and programs
Financing for AWS Marketplace purchases
AWS Marketplace now accepts line of credit payments through the PNC Vendor Finance program. This program is available to select AWS customers in the US, excluding NV, NC, ND, TN, & VT.
Pricing
Free trial
Try this product at no cost for 5 days according to the free trial terms set by the vendor. Usage-based pricing is in effect for usage beyond the free trial terms. Your free trial gets automatically converted to a paid subscription when the trial ends, but may be canceled any time before that.
Pricing is based on actual usage, with charges varying according to how much you consume. Subscriptions have no end date and may be canceled any time.
Additional AWS infrastructure costs may apply. Use the AWS Pricing Calculator to estimate your infrastructure costs.
Instance type | Product cost/hour | EC2 cost/hour | Total/hour |
|---|---|---|---|
t2.medium | $0.085 | $0.046 | $0.131 |
t2.large Recommended | $0.085 | $0.093 | $0.178 |
t2.xlarge | $0.085 | $0.186 | $0.271 |
t2.2xlarge | $0.085 | $0.371 | $0.456 |
t3.medium | $0.085 | $0.042 | $0.127 |
t3.large | $0.085 | $0.083 | $0.168 |
t3.xlarge | $0.085 | $0.166 | $0.251 |
t3.2xlarge | $0.085 | $0.333 | $0.418 |
t3a.medium | $0.085 | $0.038 | $0.123 |
t3a.large | $0.085 | $0.075 | $0.16 |
Additional AWS infrastructure costs
Type | Cost |
|---|---|
EBS General Purpose SSD (gp2) volumes | $0.10/per GB/month of provisioned storage |
Vendor refund policy
If you are not satisfied or have issues with the AMI, we'll happily refund the charges within 30 days of provisioning
Legal
Vendor terms and conditions
Upon subscribing to this product, you must acknowledge and agree to the terms and conditions outlined in the vendor's End User License Agreement (EULA) .
Content disclaimer
Vendors are responsible for their product descriptions and other product content. AWS does not warrant that vendors' product descriptions or other product content are accurate, complete, reliable, current, or error-free.
Delivery details
64-bit (x86) Amazon Machine Image (AMI)
Amazon Machine Image (AMI)
An AMI is a virtual image that provides the information required to launch an instance. Amazon EC2 (Elastic Compute Cloud) instances are virtual servers on which you can run your applications and workloads, offering varying combinations of CPU, memory, storage, and networking resources. You can launch as many instances from as many different AMIs as you need.
Version release notes
Additional details
Usage instructions
PLEASE NOTE: For the AMI to function correctly, you must have "DNS hostnames" enabled in your VPC. Please enable DNS hostnames prior to launching your EC2 Instance.
Add security groups to allow HTTPS traffic as appropriate or replace 127.0.0.1/32 in our provided security groups. Once the AMI is running, use a browser to navigate to the default public host name of the EC2 instance which can be found under "Public IPv4 DNS" for your EC2 instance. For example, if your public IP is 1.1.1.1, then use the address of https://ec2-1-1-1-1.compute-1.amazonaws.com/ to reach the web installer and customize your instance.
Resources
Vendor resources
Support
AWS infrastructure support
AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.
Similar products
Consul on Hardened Ubuntu 20.04
By Hardened Images
Consul on Hardened Ubuntu 20.04 is rigorously secured following STIG guidelines, recognized through a consensus-driven process as the industry benchmark for secure configuration, optimizing both security and efficiency. Please note, this product has charges associated with it for seller support.
MongoDB Server Community Edition on Ubuntu Server 20.04
By Cloud Infrastructure Services
MongoDB Community Server is a powerful distributed document database. Flexible document model along with ad hoc queries, indexing, and real time aggregation.
Jekyll pre-configured by Miri Infotech Inc. on Ubuntu.
By Miri Infotech
This product has charges associated with it for seller support and pre-configured Product. Jekyll is a trend-setting static html page generator. It's popular not just for being free and open-source, but also for its simplicity and utility.
CData AWS Glue Connector for Amazon Athena
By CData Software
Easily connect to Amazon Athena from AWS Glue
Customer reviews
Anjali A.
DefectDojo: Ultimate Vulnerability Management Solution
Reviewed on Jul 22, 2024
Review provided by G2
What do you like best about the product?
Defectdojo has all the Possible features which is needed for Vulnerability Management. if you want to showcase the test which is done in last month you can showcase that with easy matric.
What do you dislike about the product?
Enterprise version is too slow if i upload large file /.
What problems is the product solving and how is that benefiting you?
Defectdojo is majorlly helping with me is manage monthly vulnerability . if previous month vulnerability not in present month so it will be automatically closed in current month.
Leave a comment0 comments
Divi N.
Free to use vulnerability management tool
Reviewed on Mar 14, 2024
Review provided by G2
What do you like best about the product?
-Since its opensourced its free to use
-Supports importing reports from lots of other tools
- Easy to integrate with other tools
-SSO supported
-Easy to install
-Supports importing reports from lots of other tools
- Easy to integrate with other tools
-SSO supported
-Easy to install
What do you dislike about the product?
-They are removing features from opensource version and putting them into paid version
-UI is bit finicky
-UI is bit finicky
What problems is the product solving and how is that benefiting you?
DefectDojo in my opinion was one of the best VM tool. I have used it for my multiple projects, its very easy to have multiple projects and project under same account and get statuses from all the projects at once. DefectDojo also has REST APIs hence it is very easy to integrate with other services.
Henry E.
A pertinacious and authentic platform for security programs in the organization
Reviewed on Feb 16, 2024
Review provided by G2
What do you like best about the product?
The product has a very simple user interface that enables most users to easily navigate around without any hardship or challenge as it is a straightforward tool to most beginners. The software integration with Jira has a huge impact hence it enhances productivity. The software has a very great source vulnerability management tool and because of this, I would recommend it to all the users.
What do you dislike about the product?
I can't give five stars to the platform as it has poor customer support that doesn’t respond and solve customers' issues as supposed to be as it is an open-source solution.
What problems is the product solving and how is that benefiting you?
The platform is best as it puts together many scan reports in one single platform. The product enables security engineers to spend less time when logging in vulnerability it is achieved by the platform having a vulnerability testing system. The fact that DefectDojo has an open- source model of vulnerability management makes it reduce all the huge costs of solution.
Marilena S.
An industrious and dependable platform for security and vulnerability management
Reviewed on Feb 12, 2024
Review provided by G2
What do you like best about the product?
DefectDojo is a straightforward platform hence any user can use it effortlessly with any difficulty when using it. The product helps its users to be always updated as it provides them with notifications via Slack or email. The product has integration features hence it integrates with other reporting tools increasing productivity.
What do you dislike about the product?
There is not much to dislike about the product but customer support is not prioritized as the support team could take days to solve customer’s issues.
What problems is the product solving and how is that benefiting you?
Defectdojo with the right SLA and stakeholders helps in managing the identified vulnerabilities. The product has helped most of the security experts to spend less time logging vulnerabilities. The product favors its users as it is easy to use, manage, and easy to set up hence great for all beginners as it is effortless to mavigate.
R V.
DefectDojo is the best Open-source Vulnerability Management Tool!
Reviewed on Dec 19, 2023
Review provided by G2
What do you like best about the product?
If you are looking for a good open source vulnerability management tool, than this is it. It can be integrated with different VAPT scanner reports and the complete lifecycle management can be done for the Vulnerabilites identified.
What do you dislike about the product?
It should also have APIs available that can be easily integrated with certain SIEM tools.
What problems is the product solving and how is that benefiting you?
DefectDojo is providing an open-source model of Vulnerability Management tool and it reduces the cost of the solution.