GitPlanet

Cheap and reliable Node.js hosting starts at $3/month, and $1/month static HTML hosting

Created with love in Canada, visit hostnodejs.com today

Feel like to post an Ad? Learn Details
All Projects → forward3d → garrison

forward3d / garrison

Licence: other
Security, Compliance and Informational Dashboard System

Programming Languages

ruby
36898 projects - #4 most used programming language
Haml
164 projects
Sass
350 projects
HTML
75241 projects
javascript
184084 projects - #8 most used programming language
Dockerfile
14818 projects

Labels

securitycompliancesecurity-toolssecurity-dashboardgarrison

Projects that are alternatives of or similar to garrison

openacr
OpenACR is a digital native Accessibility Conformance Report (ACR). The initial development is based on Section 508 requirements. The main goal is to be able to compare the accessibility claims of digital products and services. A structured, self-validated, machine-readable documentation will provide for this.
Stars: ✭ 61 (+154.17%)
Mutual labels:  compliance
cscanner
An open source, multi-cloud DevSecOps compliance checker
Stars: ✭ 19 (-20.83%)
Mutual labels:  compliance
speedle-plus
Speedle+ is an open source project for access management. It is based on Speedle open source project and maintained by previous Speedle maintainers.
Stars: ✭ 45 (+87.5%)
Mutual labels:  compliance
LOCKLEVEL
A prototype that demonstrates a method for scoring how well Windows systems have implemented some of the top 10 Information Assurance mitigation strategies. #nsacyber
Stars: ✭ 98 (+308.33%)
Mutual labels:  compliance
wazuh-packages
Wazuh - Tools for packages creation
Stars: ✭ 54 (+125%)
Mutual labels:  compliance
intercept
INTERCEPT / Policy as Code Static Analysis Auditing / SAST
Stars: ✭ 54 (+125%)
Mutual labels:  compliance
lunasec
LunaSec - Dependency Security Scanner that automatically notifies you about vulnerabilities like Log4Shell or node-ipc in your Pull Requests and Builds. Protect yourself in 30 seconds with the LunaTrace GitHub App: https://github.com/marketplace/lunatrace-by-lunasec/
Stars: ✭ 1,261 (+5154.17%)
Mutual labels:  compliance
wazuh-puppet
Wazuh - Puppet module
Stars: ✭ 25 (+4.17%)
Mutual labels:  compliance
forge
ISC Forge is an open source DHCP conformance validation framework, primarily used for testing ISC Kea.
Stars: ✭ 26 (+8.33%)
Mutual labels:  compliance
FOSSologyUI
Repository to hold the new UI framework for FOSSology built with React
Stars: ✭ 35 (+45.83%)
Mutual labels:  compliance
guardian
Guardian is a tool for extensible and universal data access with automated access workflows and security controls across data stores, analytical systems, and cloud products.
Stars: ✭ 127 (+429.17%)
Mutual labels:  compliance
irene
I AM SHER LOCKED. Dashboard for Appknox Users.
Stars: ✭ 15 (-37.5%)
Mutual labels:  security-dashboard
before-you-ship
merged into the TTS Handbook
Stars: ✭ 39 (+62.5%)
Mutual labels:  compliance
havengrc
☁️Haven GRC - easier governance, risk, and compliance 👨‍⚕️👮‍♀️🦸‍♀️🕵️‍♀️👩‍🔬
Stars: ✭ 83 (+245.83%)
Mutual labels:  compliance
libredefender
Imagine the information security compliance guideline says you need an antivirus but you run Arch Linux
Stars: ✭ 76 (+216.67%)
Mutual labels:  compliance
steampipe-mod-kubernetes-compliance
Run individual controls or full compliance benchmarks for NSA CISA Kubernetes Hardening Guidance across all of your Kubernetes clusters using Steampipe.
Stars: ✭ 23 (-4.17%)
Mutual labels:  compliance
wazuh-ansible
Wazuh - Ansible playbook
Stars: ✭ 166 (+591.67%)
Mutual labels:  compliance
inspec-gke-cis-benchmark
GKE CIS 1.1.0 Benchmark InSpec Profile
Stars: ✭ 27 (+12.5%)
Mutual labels:  compliance
vulcan
A web application to streamline the development of STIGs from SRGs
Stars: ✭ 30 (+25%)
Mutual labels:  compliance
terraform-aws-config
This module configures AWS Config, a service that enables you to assess, audit, and evaluate the configurations of your AWS resources.
Stars: ✭ 24 (+0%)
Mutual labels:  compliance
View All Similar Projects ➔

Garrison

Garrison is a security service for consolidating alerts from many other systems down to a single web dashboard.

Garrison UI

This project is in active development, we aim to always keep it functional, however we may break things from time to time. If you spot a problem, please raise a GitHub issue.

Preface

Garrison is made up of two parts...

  1. Dashboard
  2. Agents

Web interface

A Ruby on Rails web app, which utilizes a PostgreSQL database for alert storage.

Agents

These populate the alerts you see in the dashboard, they are primarily lightweight docker containers. They are responsible for sending data to the web API which populates the interface.

There are some pre-built agents, but you can create your own agents very easily if you need to.

Installation

We provide pre-build Docker containers for all parts of the service which are available on Docker Hub.

Configuration

Dashboard

TODO

Agents

There are some global configuration options for agents, these are provided to the agent containers via environmental variables. Some agents may have additional configuration options, however these will be documented with the individual agent.

Each agent must be registered before you use them as they need an Agent UUID. You can get this by POSTing to the API...

curl -d '{"agent": {"source": "aws-rds", "check": "check_engine_version"}}' -H "Content-Type: application/json" -X POST https://garrison.internal.acme.com/api/v1/agents

This is done so that alerts can be traced back to a single run of an agent, all the way down to the specific check type.

Global Configuration Options (Mandatory)
Environmental Variable Description
GARRISON_URL URL to the Garrison web interface eg. https://garrison.internal.acme.com
GARRISON_AGENT_UUID The UUID that was previously registered with the API
Global Configuration Options (Optional)

All optional variables will contain a sane default by the individual check itself, these options are provided for if you want to override that default.

Environmental Variable Description
GARRISON_ALERT_SOURCE Source slug eg. aws-rds, cve-detail
GARRISON_ALERT_SEVERITY Severity slug eg. critical, high, medium, low, info [1]
GARRISON_ALERT_FAMILY Family slug eg. attack, infrastructure, software, networking [1]
GARRISON_ALERT_TYPE Type slug eg. security, compliance, informational [1]
GARRISON_ALERT_DEPARTMENTS Comma Separated list of Department slugs eg. it,development [2]
GARRISON_AUTO_OBSOLETE Setting this to anything will automatically mark Alerts generated by previous runs by this agent as obsolete
  1. Or any other custom ones you have created within Garrison.
  2. Departments must already exist.

Available Agents

This is just a list of the official agents, you might find more with the GitHub Tag garrison-agent

Note that the project description data, including the texts, logos, images, and/or trademarks, for each open source project belongs to its rightful owner. If you wish to add or remove any projects, please contact us at [email protected].