Cheap and reliable Node.js hosting starts at $3/month, and $1/month static HTML hosting

Created with love in Canada, visit hostnodejs.com today

Feel like to post an Ad? Learn Details

faloker / Purify

Licence: mit

All-in-one tool for managing vulnerability reports from AppSec pipelines

Labels

vue security security-tools infosec security-audit nestjs vulnerability-scanners vuetify security-automation devsecops appsec vulnerability-assessment vulnerability-management

Projects that are alternatives of or similar to Purify

Vuls

Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices

Stars: ✭ 8,844 (+12183.33%)

Mutual labels: security-tools, security-audit, vulnerability-scanners, security-automation, vulnerability-assessment, vulnerability-management

Faraday

Faraday introduces a new concept - IPE (Integrated Penetration-Test Environment) a multiuser Penetration test IDE. Designed for distributing, indexing, and analyzing the data generated during a security audit.

Stars: ✭ 3,198 (+4341.67%)

Mutual labels: infosec, security-audit, vulnerability-scanners, security-automation, devsecops, vulnerability-management

Sbt Dependency Check

SBT Plugin for OWASP DependencyCheck. Monitor your dependencies and report if there are any publicly known vulnerabilities (e.g. CVEs). 🌈

Stars: ✭ 187 (+159.72%)

Mutual labels: infosec, security-audit, vulnerability-scanners, security-automation, devsecops, appsec

Lynis

Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.

Stars: ✭ 9,137 (+12590.28%)

Mutual labels: security-tools, security-audit, vulnerability-scanners, vulnerability-assessment

Securitymanageframwork

Security Manage Framwork is a security management platform for enterprise intranet, which includes asset management, vulnerability management, account management, knowledge base management, security scanning automation function modules, and can be used for internal security management. This platform is designed to help Party A with fewer security personnel, complicated business lines, difficult periodic inspection and low automation to better achieve internal safety management.

Stars: ✭ 378 (+425%)

Mutual labels: infosec, security-audit, vulnerability-scanners, vulnerability-assessment

Patrowlmanager

PatrOwl - Open Source, Smart and Scalable Security Operations Orchestration Platform

Stars: ✭ 363 (+404.17%)

Mutual labels: security-tools, vulnerability-scanners, security-automation, vulnerability-management

Hellraiser

Vulnerability scanner using Nmap for scanning and correlating found CPEs with CVEs.

Stars: ✭ 413 (+473.61%)

Mutual labels: security-tools, security-audit, vulnerability-scanners, vulnerability-assessment

reconmap

Vulnerability assessment and penetration testing automation and reporting platform for teams.

Stars: ✭ 242 (+236.11%)

Mutual labels: infosec, vulnerability-management, security-automation, devsecops

Patrowlengines

PatrOwl - Open Source, Free and Scalable Security Operations Orchestration Platform

Stars: ✭ 162 (+125%)

Mutual labels: security-tools, vulnerability-scanners, security-automation, vulnerability-management

Bulwark

An organizational asset and vulnerability management tool, with Jira integration, designed for generating application security reports.

Stars: ✭ 113 (+56.94%)

Mutual labels: security-tools, appsec, vulnerability-assessment, vulnerability-management

Patrowldocs

PatrOwl - Open Source, Free and Scalable Security Operations Orchestration Platform

Stars: ✭ 105 (+45.83%)

Mutual labels: security-tools, vulnerability-scanners, security-automation, vulnerability-management

Xunfeng

巡风是一款适用于企业内网的漏洞快速应急，巡航扫描系统。

Stars: ✭ 3,131 (+4248.61%)

Mutual labels: infosec, security-audit, vulnerability-scanners, vulnerability-assessment

Rapidscan

🆕 The Multi-Tool Web Vulnerability Scanner.

Stars: ✭ 775 (+976.39%)

Mutual labels: security-tools, vulnerability-scanners, vulnerability-assessment, vulnerability-management

Security Orchestration, Automation and Response (SOAR) Platform. 安全编排与自动化响应平台，无需编写代码的安全自动化，使用 SOAR 可以让团队工作更加高效

Stars: ✭ 367 (+409.72%)

Mutual labels: security-tools, security-audit, security-automation

Fwanalyzer

a tool to analyze filesystem images for security

Stars: ✭ 382 (+430.56%)

Mutual labels: security-tools, security-audit, security-automation

Holisticinfosec For Webdevelopers Fascicle0

📚 Overview 🔒 Tooling 🔒 Process 🔒 Physical 🔒 People 📚

Stars: ✭ 37 (-48.61%)

Mutual labels: infosec, security-audit, devsecops

Openvas Scanner

Open Vulnerability Assessment Scanner - Scanner for Greenbone Vulnerability Management (GVM)

Stars: ✭ 1,056 (+1366.67%)

Mutual labels: vulnerability-scanners, vulnerability-assessment, vulnerability-management

Threatmapper

Identify vulnerabilities in running containers, images, hosts and repositories

Stars: ✭ 361 (+401.39%)

Mutual labels: security-tools, devsecops, vulnerability-management

Race The Web

Tests for race conditions in web applications. Includes a RESTful API to integrate into a continuous integration pipeline.

Stars: ✭ 385 (+434.72%)

Mutual labels: security-tools, infosec, appsec

Trivy

Scanner for vulnerabilities in container images, file systems, and Git repositories, as well as for configuration issues

Stars: ✭ 9,673 (+13334.72%)

Mutual labels: security-tools, vulnerability-scanners, devsecops

View All Similar Projects ➔

Purify

All-in-one tool for managing vulnerability reports

🎮 Demo

📃 Docs

📹 Quick Vimeo

Description

The goal of Purify to be an easy-in-use and efficient tool to simplify a workflow of managing vulnerabilities delivered from various (even custom) tools.

Purify is aims to be a tool-agnostic application. Tool independence makes it possible to analyze results/findings/reports of any toolset. Technically, the report you want to upload should be one of the following:

JSON file
XML file
JSON object (most webhooks dispatch events as separate JSON objects)

This means you don't need any special plug-ins to parse incoming reports. For this Purify introduces the concept of templates. Templates are code-free and user-friendly structures that parse reports the way you tell them.

Purify is able to remove duplicate results among various vulnerability scanners or tools. In addition, it can combine several results of the same tool based on selected fields and it is fully configurable. Purify does all this work to reduce the headache of the analyst.

Collect all your findings in one place, review/validate/track them, collaborate with your teammates, receive notifications via Slack, create Jira tickets and many more.

Getting started

Official Documentation
Live Demo
- email: [email protected]
- password: 123456

Questions

For questions and support please use Github Discussions. The issue list of this repo is exclusively for bug reports and feature requests.

Built With

Nest - The web framework used
Vuetify - Material Component Framework for Vue

License

This project is licensed under the MIT License - see the LICENSE.md file for details

Note that the project description data, including the texts, logos, images, and/or trademarks, for each open source project belongs to its rightful owner. If you wish to add or remove any projects, please contact us at [email protected].

Stars: ✭ 72

Visit Git Page 🔗Visit User Page 🔗Visit Issues Page (7) 🔗