Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
LT - OWASP AMASS
Search
Sponsored
·
Ship Features Fearlessly
Turn features on and off without deploys. Used by thousands of Ruby developers.
→
Akitsugu Ito
February 09, 2020
Technology
0
260
LT - OWASP AMASS
I presented about OWASP AMASS at OWASP Sendai Day 2020 as Lightning Talks.
Akitsugu Ito
February 09, 2020
Tweet
Share
More Decks by Akitsugu Ito
See All by Akitsugu Ito
OWASP SAMM Ver.2 Introduction JP
springmoon6
0
3k
OWASP SAMM Ver.2 Introduction EN
springmoon6
0
730
What’s Security Engineering Manager?
springmoon6
1
1k
PSIRT Service Framework のご紹介
springmoon6
0
1.1k
セキュリティキャンプ 2018 企業プレゼン
springmoon6
0
510
Other Decks in Technology
See All in Technology
予期せぬコストの急増を障害のように扱う――「コスト版ポストモーテム」の導入とその後の改善
muziyoshiz
1
1.8k
コスト削減から「セキュリティと利便性」を担うプラットフォームへ
sansantech
PRO
3
1.4k
今日から始める Amazon Bedrock AgentCore
har1101
4
400
Cosmos World Foundation Model Platform for Physical AI
takmin
0
830
AzureでのIaC - Bicep? Terraform? それ早く言ってよ会議
torumakabe
1
520
顧客の言葉を、そのまま信じない勇気
yamatai1212
1
350
広告の効果検証を題材にした因果推論の精度検証について
zozotech
PRO
0
160
AIと新時代を切り拓く。これからのSREとメルカリIBISの挑戦
0gm
0
880
30万人の同時アクセスに耐えたい!新サービスの盤石なリリースを支える負荷試験 / SRE Kaigi 2026
genda
4
1.2k
M&A 後の統合をどう進めるか ─ ナレッジワーク × Poetics が実践した組織とシステムの融合
kworkdev
PRO
1
430
GSIが複数キー対応したことで、俺達はいったい何が嬉しいのか?
smt7174
3
150
ブロックテーマでサイトをリニューアルした話 / 2026-01-31 Kansai WordPress Meetup
torounit
0
460
Featured
See All Featured
Building Flexible Design Systems
yeseniaperezcruz
330
40k
Embracing the Ebb and Flow
colly
88
5k
RailsConf & Balkan Ruby 2019: The Past, Present, and Future of Rails at GitHub
eileencodes
141
34k
The SEO identity crisis: Don't let AI make you average
varn
0
87
A Tale of Four Properties
chriscoyier
162
24k
Music & Morning Musume
bryan
47
7.1k
From Legacy to Launchpad: Building Startup-Ready Communities
dugsong
0
140
Intergalactic Javascript Robots from Outer Space
tanoku
273
27k
Money Talks: Using Revenue to Get Sh*t Done
nikkihalliwell
0
150
Improving Core Web Vitals using Speculation Rules API
sergeychernyshev
21
1.4k
How to Talk to Developers About Accessibility
jct
2
130
Joys of Absence: A Defence of Solitary Play
codingconduct
1
290
Transcript
OWASP AMASS Akitsugu Ito(@springmoon6)
None
Requirement Design Develop Testing Implement Operation ① Requirement OWASP Top
10 Project ② Design Development OWASP Cheat Sheet Series OWASP Application Security Verification Standard (ASVS) OWASP Security Shepherd OWASP Security Knowledge Framework ③ Testing OWASP Zed Attack Proxy OWASP Juice Shop OWASP Web Security Testing Guide OWASP Mobile Security Testing Guide ④ Implement Operation OWASP ModSecurity Core Rule Set OWASP APPSensor OWASP CSRFGuard OWASP Dependency Check OWASP Dependency Track
Requirement Design Develop Testing Implement Operation ① Requirement OWASP Top
10 Project ② Design Development OWASP Cheat Sheet Series OWASP Application Security Verification Standard (ASVS) OWASP Security Shepherd OWASP Security Knowledge Framework ③ Testing OWASP Zed Attack Proxy OWASP Juice Shop OWASP Web Security Testing Guide OWASP Mobile Security Testing Guide ④ Implement Operation OWASP ModSecurity Core Rule Set OWASP APPSensor OWASP CSRFGuard OWASP Dependency Check OWASP Amass OWASP Dependency Track
What is Amass? • In-depth DNS Enumeration, Attack Surface Mapping
and External Asset Discovery. • DNS enumeration and network mapping to aid in understanding an organization’s attack surface on the Internet https://owasp.org/www-project-amass/
How to install • Docker • Security OS
Results
Visualization https://github.com/OWASP/Amass/blob/master/doc/user_guide.md
springmoon6
muziyoshiz
sansantech
har1101
takmin
torumakabe
yamatai1212
zozotech
0gm
genda
kworkdev
smt7174
torounit
yeseniaperezcruz
colly
eileencodes
varn
chriscoyier
bryan
dugsong
tanoku
nikkihalliwell
sergeychernyshev
jct
codingconduct
