How to use DefectDojo to manage vulnerabilities

Core data classes

DefectDojo is based on a model that allows high flexibility for your test tracking needs.


Various features help manage the findings.


Users have different functionality available to them, depending on their system-wide permissions and on the role they have as a member of a particular Product or Product Type.


Collect test scope and deployment information from outsiders.

Example workflows

Two examples how DefectDojo can be used in day-to-day operations.

Performance Enhancements

Settings to configure to enhance performance in DefectDojo

Last modified May 7, 2021: Documentation Update (#4468) (5488c9325)