En

🎨 Pro UI Changes

In late 2023, DefectDojo Inc. released a new UI for DefectDojo Pro, which is now the default UI for this edition.

The Pro UI brings the following enhancements to DefectDojo:

  • Modern and sleek design using Vue.js.
  • Optimized data delivery and load times, especially for large datasets.
  • Access to new Pro features, including API Connectors, Universal Importer, and Pro Metrics views.
  • Improved UI workflows: better filtering, dashboards, and navigation.

Switching To The Pro UI

To access the Pro UI, open your User Options menu from the top-right hand corner. You can also switch back to the Classic UI from the same menu.

image

image

  1. The Sidebar has been reorganized into four parent categories: Dashboards, Import, Manage, and Settings.

  2. The Homepage, AI-powered native API connection capabilities, Pro Metrics, and the Calendar view are all accessible under Dashboards.

  3. Import methods can be found in the Import section: set up API Connectors, use the Import Scan form to Add Findings, use Smart Upload to handle infrastructure scanning tools, or use our external toolsβ€”Universal Importer and DefectDojo CLIβ€”to streamline both the import and reimport processes of Findings and associated objects.

  4. The Manage section allows you to view different objects in the Product Hierarchy, with views for Product Types, Products, Engagements, Tests, Findings, Risk Acceptances, Endpoints, and Components. There are additional sections for generating reports (Report Builder), using surveys (Surveys), as well as a Rules Engine.

  5. The Settings section allows you to configure your DefectDojo instance, including your Integrations, License, Cloud Settings, Users, Feature Configuration and admin-level Enterprise Settings.

  6. The Pro Settings section contains the System Settings, Banner Settings, Notification Settings, Jira Instances, Deduplication Settings, and Authentication Settings, including SAML, OIDC, OAuth, Login, and MFA forms.

  7. The Pro UI also has a new table format, used in the Product Hierarchy to help with navigation. Each column can be clicked on to apply a relevant filter, and columns can be reordered to present data however you like.

  8. The table also has a “Toggle Columns” menu which can add or remove columns from the table.

Filtering the Table

In this screenshot we are filtering for all Findings that are in β€œSam’s Awesome Product.” Once we click Apply, the contents of this Finding list will update to reflect the chosen filter.

image

New Dashboards

New Metrics visualizations are included in the Pro UI. All of these reports can be filtered and exported as PDFs to share them with a wider audience.

image

  • The Executive Insights dashboard displays the current state of your Products and Product Types.
  • Priority Insights show the most critical findings with the option to filter for various timelines, Product Types, Products, and Tags.
  • The Program Insights dashboard displays the effectiveness of your security team and the cost savings associated with separating duplicates and false positives from actionable Findings.
  • Remediation Insights displays your team’s effectiveness at remediating Findings.
  • Tool Insights displays the effectiveness of your tool suite (and Connectors pipelines) at detecting and reporting vulnerabilities.
Prev
Running in Production (Open Source)
Next
Deduplication Tuning (Open Source)