A Gen AI-powered tool that guides security practitioners in prompting GenAI models to assist in application security activities. Tracker: https://github.com/users/Deloitte-ngerard/projects/1/
On the first page/tab:
-update sensitivity levels (Top Secret, Secret, etc.) to add more generic terms, and provide tooltips with definitions
-Consider making this multi-select so that users can pick all data classes (PII, PHI, PCI data, etc.)
-expand the 'internet facing' to options of public (no auth), internet accessible, internal network, segmented network, or local access only
-Add additional app properties that we could consider to provide more specific results: Deployment infra (functionless, containerized, VMs, etc.) and others
Deloitte-ngerard
commented
1 month ago
On the first page/tab: -update sensitivity levels (Top Secret, Secret, etc.) to add more generic terms, and provide tooltips with definitions -Consider making this multi-select so that users can pick all data classes (PII, PHI, PCI data, etc.) -expand the 'internet facing' to options of public (no auth), internet accessible, internal network, segmented network, or local access only -Add additional app properties that we could consider to provide more specific results: Deployment infra (functionless, containerized, VMs, etc.) and others