Pro Features List

DefectDojo Pro comes with many additional features. Here is list of those features, along with links to documentation to see them in action:

Improved UX#

Pro UI#

DefectDojo’s UI has been reworked in DefectDojo Pro to be faster, more functional and to be better at navigating through enterprise-level data volume. See our Beta UI Guide for more information.

Rules Engine#

DefectDojo Pro’s Rules Engine allows you to set up a script of automated bulk actions - no programming experience required. Build custom workflows and bulk actions to handle Findings and other objects. See our Rules Engine Guide for more info.

Streamlined import#

CLI Tools#

Quickly build a command-line pipeline to import, reimport and export data to your DefectDojo Pro instance using our Universal Importer and DefectDojo CLI apps. These tools are maintained by the DefectDojo Pro team and can be run in Windows, Macintosh or Linux environments. See our External Tools Guide for more information.

Connectors#

DefectDojo can instantly connect to supported tools to import new Finding data - get an automated Import pipeline working out-of-the-box, without the need to set up any API calls or cron jobs. See our Connectors Guide for more information.

Supported tools for Connectors include:

• AWS Security Hub
• BurpSuite
• Checkmarx ONE
• Dependency-Track
• Probely
• Semgrep
• SonarQube
• Snyk
• Tenable

Universal Parser#

Are you using an unsupported or customized scanning tool? Or do you just wish DefectDojo handled a report slightly differently?

Use DefectDojo Pro’s Universal Parser to turn any .json or .csv report into an actionable set of Findings, and have DefectDojo parse the data however you like. See our Universal Parser Guide