Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
LT - OWASP AMASS
Search
Sponsored
·
SiteGround - Reliable hosting with speed, security, and support you can count on.
→
Akitsugu Ito
February 09, 2020
Technology
270
0
Share
LT - OWASP AMASS
I presented about OWASP AMASS at OWASP Sendai Day 2020 as Lightning Talks.
Akitsugu Ito
February 09, 2020
More Decks by Akitsugu Ito
See All by Akitsugu Ito
OWASP SAMM Ver.2 Introduction JP
springmoon6
0
3.1k
OWASP SAMM Ver.2 Introduction EN
springmoon6
0
750
What’s Security Engineering Manager?
springmoon6
1
1k
PSIRT Service Framework のご紹介
springmoon6
0
1.2k
セキュリティキャンプ 2018 企業プレゼン
springmoon6
0
510
Other Decks in Technology
See All in Technology
ThetaOS - A Mythical Machine comes Alive
aslander
0
230
Oracle AI Database@AWS:サービス概要のご紹介
oracle4engineer
PRO
3
2k
スケーリングを封じられたEC2を救いたい
senseofunity129
0
130
サイボウズ 開発本部採用ピッチ / Cybozu Engineer Recruit
cybozuinsideout
PRO
10
77k
Why we keep our community?
kawaguti
PRO
0
360
「できない」のアウトプット 同人誌『精神を壊してからの』シリーズ出版を 通して得られたこと
comi190327
3
500
15年メンテしてきたdotfilesから開発トレンドを振り返る 2011 - 2026
giginet
PRO
2
260
Cursor Subagentsはいいぞ
yug1224
2
130
QA組織のAI戦略とAIテスト設計システムAITASの実践
sansantech
PRO
1
300
Oracle AI Database@Azure:サービス概要のご紹介
oracle4engineer
PRO
4
1.3k
AI時代のシステム開発者の仕事_20260328
sengtor
0
320
スクラムを支える内部品質の話
iij_pr
0
120
Featured
See All Featured
B2B Lead Gen: Tactics, Traps & Triumph
marketingsoph
0
94
Collaborative Software Design: How to facilitate domain modelling decisions
baasie
0
180
The Myth of the Modular Monolith - Day 2 Keynote - Rails World 2024
eileencodes
26
3.4k
Money Talks: Using Revenue to Get Sh*t Done
nikkihalliwell
0
200
How To Stay Up To Date on Web Technology
chriscoyier
790
250k
Large-scale JavaScript Application Architecture
addyosmani
515
110k
Fashionably flexible responsive web design (full day workshop)
malarkey
408
66k
Put a Button on it: Removing Barriers to Going Fast.
kastner
60
4.2k
Writing Fast Ruby
sferik
630
63k
The agentic SEO stack - context over prompts
schlessera
0
720
DevOps and Value Stream Thinking: Enabling flow, efficiency and business value
helenjbeal
1
160
RailsConf & Balkan Ruby 2019: The Past, Present, and Future of Rails at GitHub
eileencodes
141
35k
Transcript
OWASP AMASS Akitsugu Ito(@springmoon6)
None
Requirement Design Develop Testing Implement Operation ① Requirement OWASP Top
10 Project ② Design Development OWASP Cheat Sheet Series OWASP Application Security Verification Standard (ASVS) OWASP Security Shepherd OWASP Security Knowledge Framework ③ Testing OWASP Zed Attack Proxy OWASP Juice Shop OWASP Web Security Testing Guide OWASP Mobile Security Testing Guide ④ Implement Operation OWASP ModSecurity Core Rule Set OWASP APPSensor OWASP CSRFGuard OWASP Dependency Check OWASP Dependency Track
Requirement Design Develop Testing Implement Operation ① Requirement OWASP Top
10 Project ② Design Development OWASP Cheat Sheet Series OWASP Application Security Verification Standard (ASVS) OWASP Security Shepherd OWASP Security Knowledge Framework ③ Testing OWASP Zed Attack Proxy OWASP Juice Shop OWASP Web Security Testing Guide OWASP Mobile Security Testing Guide ④ Implement Operation OWASP ModSecurity Core Rule Set OWASP APPSensor OWASP CSRFGuard OWASP Dependency Check OWASP Amass OWASP Dependency Track
What is Amass? • In-depth DNS Enumeration, Attack Surface Mapping
and External Asset Discovery. • DNS enumeration and network mapping to aid in understanding an organization’s attack surface on the Internet https://owasp.org/www-project-amass/
How to install • Docker • Security OS
Results
Visualization https://github.com/OWASP/Amass/blob/master/doc/user_guide.md
springmoon6
aslander
oracle4engineer
senseofunity129
cybozuinsideout
kawaguti
comi190327
giginet
yug1224
sansantech
sengtor
iij_pr
marketingsoph
baasie
eileencodes
nikkihalliwell
chriscoyier
addyosmani
malarkey
kastner
sferik
schlessera
.png){kind=avatar}
helenjbeal
