Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
LT - OWASP AMASS
Search
Akitsugu Ito
February 09, 2020
Technology
0
230
LT - OWASP AMASS
I presented about OWASP AMASS at OWASP Sendai Day 2020 as Lightning Talks.
Akitsugu Ito
February 09, 2020
Tweet
Share
More Decks by Akitsugu Ito
See All by Akitsugu Ito
OWASP SAMM Ver.2 Introduction JP
springmoon6
0
2.7k
OWASP SAMM Ver.2 Introduction EN
springmoon6
0
580
What’s Security Engineering Manager?
springmoon6
1
980
PSIRT Service Framework のご紹介
springmoon6
0
1.1k
セキュリティキャンプ 2018 企業プレゼン
springmoon6
0
480
Other Decks in Technology
See All in Technology
Running JavaScript within Ruby
hmsk
3
410
OpenLane-V2ベンチマークと代表的な手法
kzykmyzw
0
120
ここはMCPの夜明けまえ
nwiizo
32
12k
コードや知識を組み込む / Incorporating Codes and Knowledge
ks91
PRO
0
140
Classmethod AI Talks(CATs) #21 司会進行スライド(2025.04.17) / classmethod-ai-talks-aka-cats_moderator-slides_vol21_2025-04-17
shinyaa31
0
630
AIでめっちゃ便利になったけど、結局みんなで学ぶよねっていう話
kakehashi
PRO
1
460
Road to Go Gem #rubykaigi
sue445
0
1k
ガバクラのAWS長期継続割引 ~次の4/1に慌てないために~
hamijay_cloud
1
520
AWSの新機能検証をやる時こそ、Amazon Qでプロンプトエンジニアリングを駆使しよう
duelist2020jp
1
290
Стильный код: натуральный поиск редких атрибутов по картинке. Юлия Антохина, Data Scientist, Lamoda Tech
lamodatech
0
830
Cursor AgentによるパーソナルAIアシスタント育成入門―業務のプロンプト化・MCPの活用
os1ma
15
6.1k
技術者はかっこいいものだ!!~キルラキルから学んだエンジニアの生き方~
masakiokuda
2
280
Featured
See All Featured
RailsConf & Balkan Ruby 2019: The Past, Present, and Future of Rails at GitHub
eileencodes
136
33k
The Psychology of Web Performance [Beyond Tellerrand 2023]
tammyeverts
47
2.7k
Fireside Chat
paigeccino
37
3.4k
JavaScript: Past, Present, and Future - NDC Porto 2020
reverentgeek
47
5.3k
The Art of Delivering Value - GDevCon NA Keynote
reverentgeek
14
1.4k
Refactoring Trust on Your Teams (GOTO; Chicago 2020)
rmw
34
2.9k
Agile that works and the tools we love
rasmusluckow
329
21k
ピンチをチャンスに:未来をつくるプロダクトロードマップ #pmconf2020
aki_iinuma
119
51k
The Straight Up "How To Draw Better" Workshop
denniskardys
233
140k
Why Our Code Smells
bkeepers
PRO
336
57k
GitHub's CSS Performance
jonrohan
1030
460k
Speed Design
sergeychernyshev
29
910
Transcript
OWASP AMASS Akitsugu Ito(@springmoon6)
None
Requirement Design Develop Testing Implement Operation ① Requirement OWASP Top
10 Project ② Design Development OWASP Cheat Sheet Series OWASP Application Security Verification Standard (ASVS) OWASP Security Shepherd OWASP Security Knowledge Framework ③ Testing OWASP Zed Attack Proxy OWASP Juice Shop OWASP Web Security Testing Guide OWASP Mobile Security Testing Guide ④ Implement Operation OWASP ModSecurity Core Rule Set OWASP APPSensor OWASP CSRFGuard OWASP Dependency Check OWASP Dependency Track
Requirement Design Develop Testing Implement Operation ① Requirement OWASP Top
10 Project ② Design Development OWASP Cheat Sheet Series OWASP Application Security Verification Standard (ASVS) OWASP Security Shepherd OWASP Security Knowledge Framework ③ Testing OWASP Zed Attack Proxy OWASP Juice Shop OWASP Web Security Testing Guide OWASP Mobile Security Testing Guide ④ Implement Operation OWASP ModSecurity Core Rule Set OWASP APPSensor OWASP CSRFGuard OWASP Dependency Check OWASP Amass OWASP Dependency Track
What is Amass? • In-depth DNS Enumeration, Attack Surface Mapping
and External Asset Discovery. • DNS enumeration and network mapping to aid in understanding an organization’s attack surface on the Internet https://owasp.org/www-project-amass/
How to install • Docker • Security OS
Results
Visualization https://github.com/OWASP/Amass/blob/master/doc/user_guide.md
springmoon6
hmsk
kzykmyzw
nwiizo
ks91
shinyaa31
kakehashi
sue445
hamijay_cloud
duelist2020jp
lamodatech
os1ma
masakiokuda
eileencodes
tammyeverts
paigeccino
reverentgeek
rmw
rasmusluckow
aki_iinuma
denniskardys
bkeepers
jonrohan
sergeychernyshev
