Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
LT - OWASP AMASS
Search
Akitsugu Ito
February 09, 2020
Technology
0
240
LT - OWASP AMASS
I presented about OWASP AMASS at OWASP Sendai Day 2020 as Lightning Talks.
Akitsugu Ito
February 09, 2020
Tweet
Share
More Decks by Akitsugu Ito
See All by Akitsugu Ito
OWASP SAMM Ver.2 Introduction JP
springmoon6
0
2.8k
OWASP SAMM Ver.2 Introduction EN
springmoon6
0
610
What’s Security Engineering Manager?
springmoon6
1
1k
PSIRT Service Framework のご紹介
springmoon6
0
1.1k
セキュリティキャンプ 2018 企業プレゼン
springmoon6
0
490
Other Decks in Technology
See All in Technology
TypeScript 上達の道
ysknsid25
23
4.9k
P2P ではじめる WebRTC のつまづきどころ
tnoho
1
280
少人数でも回る! DevinとPlaybookで支える運用改善
ishikawa_pro
4
1.9k
株式会社島津製作所_研究開発(集団協業と知的生産)の現場を支える、OSS知識基盤システムの導入
akahane92
1
1.3k
20250728 MCP, A2A and Multi-Agents in the future
yoshidashingo
1
160
[MIRU25] NaiLIA: Multimodal Retrieval of Nail Designs Based on Dense Intent Descriptions
keio_smilab
PRO
1
160
増え続ける脆弱性に立ち向かう: 事前対策と優先度づけによる 持続可能な脆弱性管理 / Confronting the Rise of Vulnerabilities: Sustainable Management Through Proactive Measures and Prioritization
nttcom
1
230
Amazon CloudWatchのメトリクスインターバルについて / Metrics interval matters
ymotongpoo
3
300
AI コードレビューが面倒すぎるのでテスト駆動開発で解決しようとして読んだら、根本的に俺の勘違いだった
mutsumix
0
110
経験がないことを言い訳にしない、 AI時代の他領域への染み出し方
parayama0625
0
280
解消したはずが…技術と人間のエラーが交錯する恐怖体験
lamaglama39
0
140
Kiroから考える AIコーディングツールの潮流
s4yuba
2
520
Featured
See All Featured
Balancing Empowerment & Direction
lara
1
510
"I'm Feeling Lucky" - Building Great Search Experiences for Today's Users (#IAC19)
danielanewman
229
22k
Fight the Zombie Pattern Library - RWD Summit 2016
marcelosomers
234
17k
StorybookのUI Testing Handbookを読んだ
zakiyama
30
5.9k
Product Roadmaps are Hard
iamctodd
PRO
54
11k
Helping Users Find Their Own Way: Creating Modern Search Experiences
danielanewman
29
2.8k
Making the Leap to Tech Lead
cromwellryan
134
9.4k
Build The Right Thing And Hit Your Dates
maggiecrowley
37
2.8k
How to Create Impact in a Changing Tech Landscape [PerfNow 2023]
tammyeverts
53
2.9k
Chrome DevTools: State of the Union 2024 - Debugging React & Beyond
addyosmani
7
770
Stop Working from a Prison Cell
hatefulcrawdad
271
21k
Dealing with People You Can't Stand - Big Design 2015
cassininazir
367
26k
Transcript
OWASP AMASS Akitsugu Ito(@springmoon6)
None
Requirement Design Develop Testing Implement Operation ① Requirement OWASP Top
10 Project ② Design Development OWASP Cheat Sheet Series OWASP Application Security Verification Standard (ASVS) OWASP Security Shepherd OWASP Security Knowledge Framework ③ Testing OWASP Zed Attack Proxy OWASP Juice Shop OWASP Web Security Testing Guide OWASP Mobile Security Testing Guide ④ Implement Operation OWASP ModSecurity Core Rule Set OWASP APPSensor OWASP CSRFGuard OWASP Dependency Check OWASP Dependency Track
Requirement Design Develop Testing Implement Operation ① Requirement OWASP Top
10 Project ② Design Development OWASP Cheat Sheet Series OWASP Application Security Verification Standard (ASVS) OWASP Security Shepherd OWASP Security Knowledge Framework ③ Testing OWASP Zed Attack Proxy OWASP Juice Shop OWASP Web Security Testing Guide OWASP Mobile Security Testing Guide ④ Implement Operation OWASP ModSecurity Core Rule Set OWASP APPSensor OWASP CSRFGuard OWASP Dependency Check OWASP Amass OWASP Dependency Track
What is Amass? • In-depth DNS Enumeration, Attack Surface Mapping
and External Asset Discovery. • DNS enumeration and network mapping to aid in understanding an organization’s attack surface on the Internet https://owasp.org/www-project-amass/
How to install • Docker • Security OS
Results
Visualization https://github.com/OWASP/Amass/blob/master/doc/user_guide.md