Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
LT - OWASP AMASS
Search
Akitsugu Ito
February 09, 2020
Technology
0
230
LT - OWASP AMASS
I presented about OWASP AMASS at OWASP Sendai Day 2020 as Lightning Talks.
Akitsugu Ito
February 09, 2020
Tweet
Share
More Decks by Akitsugu Ito
See All by Akitsugu Ito
OWASP SAMM Ver.2 Introduction JP
springmoon6
0
2.6k
OWASP SAMM Ver.2 Introduction EN
springmoon6
0
550
What’s Security Engineering Manager?
springmoon6
1
970
PSIRT Service Framework のご紹介
springmoon6
0
1k
セキュリティキャンプ 2018 企業プレゼン
springmoon6
0
480
Other Decks in Technology
See All in Technology
飲食店予約台帳を支えるインタラクティブ UI 設計と実装
siropaca
7
1.6k
「海外登壇」という 選択肢を与えるために 〜Gophers EX
logica0419
0
640
CZII - CryoET Object Identification 参加振り返り・解法共有
tattaka
0
310
アジャイル開発とスクラム
araihara
0
170
技術負債の「予兆検知」と「状況異変」のススメ / Technology Dept
i35_267
1
1k
利用終了したドメイン名の最強終活〜観測環境を育てて、分析・供養している件〜 / The Ultimate End-of-Life Preparation for Discontinued Domain Names
nttcom
1
120
Datadog APM におけるトレース収集の流れ及び Retention Filters のはなし / datadog-apm-trace-retention-filters
k6s4i53rx
0
330
インフラをつくるとはどういうことなのか、 あるいはPlatform Engineeringについて
nwiizo
5
2.4k
Developers Summit 2025 浅野卓也(13-B-7 LegalOn Technologies)
legalontechnologies
PRO
0
500
バックエンドエンジニアのためのフロントエンド入門 #devsumiC
panda_program
16
7k
AndroidデバイスにFTPサーバを建立する
e10dokup
0
240
Swiftの “private” を テストする / Testing Swift "private"
yutailang0119
0
120
Featured
See All Featured
The Power of CSS Pseudo Elements
geoffreycrofte
75
5.5k
ReactJS: Keep Simple. Everything can be a component!
pedronauck
666
120k
Save Time (by Creating Custom Rails Generators)
garrettdimon
PRO
29
1k
Visualization
eitanlees
146
15k
The World Runs on Bad Software
bkeepers
PRO
67
11k
Become a Pro
speakerdeck
PRO
26
5.1k
Building Flexible Design Systems
yeseniaperezcruz
328
38k
Code Reviewing Like a Champion
maltzj
521
39k
Dealing with People You Can't Stand - Big Design 2015
cassininazir
366
25k
4 Signs Your Business is Dying
shpigford
182
22k
Practical Orchestrator
shlominoach
186
10k
Gamification - CAS2011
davidbonilla
80
5.1k
Transcript
OWASP AMASS Akitsugu Ito(@springmoon6)
None
Requirement Design Develop Testing Implement Operation ① Requirement OWASP Top
10 Project ② Design Development OWASP Cheat Sheet Series OWASP Application Security Verification Standard (ASVS) OWASP Security Shepherd OWASP Security Knowledge Framework ③ Testing OWASP Zed Attack Proxy OWASP Juice Shop OWASP Web Security Testing Guide OWASP Mobile Security Testing Guide ④ Implement Operation OWASP ModSecurity Core Rule Set OWASP APPSensor OWASP CSRFGuard OWASP Dependency Check OWASP Dependency Track
Requirement Design Develop Testing Implement Operation ① Requirement OWASP Top
10 Project ② Design Development OWASP Cheat Sheet Series OWASP Application Security Verification Standard (ASVS) OWASP Security Shepherd OWASP Security Knowledge Framework ③ Testing OWASP Zed Attack Proxy OWASP Juice Shop OWASP Web Security Testing Guide OWASP Mobile Security Testing Guide ④ Implement Operation OWASP ModSecurity Core Rule Set OWASP APPSensor OWASP CSRFGuard OWASP Dependency Check OWASP Amass OWASP Dependency Track
What is Amass? • In-depth DNS Enumeration, Attack Surface Mapping
and External Asset Discovery. • DNS enumeration and network mapping to aid in understanding an organization’s attack surface on the Internet https://owasp.org/www-project-amass/
How to install • Docker • Security OS
Results
Visualization https://github.com/OWASP/Amass/blob/master/doc/user_guide.md
springmoon6
siropaca
logica0419
tattaka
araihara
i35_267
nttcom
k6s4i53rx
nwiizo
legalontechnologies
panda_program
e10dokup
yutailang0119
geoffreycrofte
pedronauck
garrettdimon
eitanlees
bkeepers
speakerdeck
yeseniaperezcruz
maltzj
cassininazir
shpigford
shlominoach
davidbonilla
