GitPlanet

Cheap and reliable Node.js hosting starts at $3/month, and $1/month static HTML hosting

Created with love in Canada, visit hostnodejs.com today

Feel like to post an Ad? Learn Details
All Projects → talsoft → Vuldash

talsoft / Vuldash

Licence: gpl-3.0
Vulnerability Dashboard

Labels

dashboardpentestinfoseccybersecurityvulnerabilityvulnerability-management

Projects that are alternatives of or similar to Vuldash

NIST-to-Tech
An open-source listing of cybersecurity technology mapped to the NIST Cybersecurity Framework (CSF)
Stars: ✭ 61 (+281.25%)
Mutual labels:  cybersecurity, vulnerability, infosec, pentest
Smersh
Smersh is a pentest oriented collaborative tool used to track the progress of your company's missions.
Stars: ✭ 43 (+168.75%)
Mutual labels:  pentest, cybersecurity, vulnerability-management
Awesome Nodejs Security
Awesome Node.js Security resources
Stars: ✭ 1,294 (+7987.5%)
Mutual labels:  pentest, infosec, cybersecurity
Docker Security Images
🔐 Docker Container for Penetration Testing & Security
Stars: ✭ 172 (+975%)
Mutual labels:  pentest, infosec, cybersecurity
H4cker
This repository is primarily maintained by Omar Santos and includes thousands of resources related to ethical hacking / penetration testing, digital forensics and incident response (DFIR), vulnerability research, exploit development, reverse engineering, and more.
Stars: ✭ 10,451 (+65218.75%)
Mutual labels:  cybersecurity, vulnerability, vulnerability-management
FSEC-VM
Backend logic implementation for Vulnerability Management System
Stars: ✭ 19 (+18.75%)
Mutual labels:  cybersecurity, infosec, vulnerability-management
Defaultcreds Cheat Sheet
One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️
Stars: ✭ 1,949 (+12081.25%)
Mutual labels:  pentest, infosec, cybersecurity
Faraday
Faraday introduces a new concept - IPE (Integrated Penetration-Test Environment) a multiuser Penetration test IDE. Designed for distributing, indexing, and analyzing the data generated during a security audit.
Stars: ✭ 3,198 (+19887.5%)
Mutual labels:  infosec, vulnerability, vulnerability-management
haiti
🔑 Hash type identifier (CLI & lib)
Stars: ✭ 287 (+1693.75%)
Mutual labels:  cybersecurity, infosec, pentest
reconmap
Vulnerability assessment and penetration testing automation and reporting platform for teams.
Stars: ✭ 242 (+1412.5%)
Mutual labels:  vulnerability, infosec, vulnerability-management
Pentesting
Misc. Public Reports of Penetration Testing and Security Audits.
Stars: ✭ 24 (+50%)
Mutual labels:  vulnerability, infosec, pentest
Spiderfoot
SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.
Stars: ✭ 6,882 (+42912.5%)
Mutual labels:  infosec, cybersecurity, pentest
A Red Teamer Diaries
RedTeam/Pentest notes and experiments tested on several infrastructures related to professional engagements.
Stars: ✭ 382 (+2287.5%)
Mutual labels:  cybersecurity, vulnerability
Webmap
WebMap-Nmap Web Dashboard and Reporting
Stars: ✭ 357 (+2131.25%)
Mutual labels:  infosec, cybersecurity
Buster
An advanced tool for email reconnaissance
Stars: ✭ 387 (+2318.75%)
Mutual labels:  infosec, cybersecurity
Pwndoc
Pentest Report Generator
Stars: ✭ 417 (+2506.25%)
Mutual labels:  pentest, infosec
Awesome Infosec
A curated list of awesome infosec courses and training resources.
Stars: ✭ 3,779 (+23518.75%)
Mutual labels:  pentest, infosec
Gosint
OSINT Swiss Army Knife
Stars: ✭ 401 (+2406.25%)
Mutual labels:  pentest, infosec
Hershell
Hershell is a simple TCP reverse shell written in Go.
Stars: ✭ 442 (+2662.5%)
Mutual labels:  pentest, infosec
Search That Hash
🔎Searches Hash APIs to crack your hash quickly🔎 If hash is not found, automatically pipes into HashCat⚡
Stars: ✭ 466 (+2812.5%)
Mutual labels:  infosec, cybersecurity
View All Similar Projects ➔

vuldash (Vulnerability Dashboard)

Vuldash allows managing projects ethical hacking together with the group of pentester and the client, showing the problems concisely. Can generate business and technical reports, as also perform a life cycle of the project with the client.

DEMO VIDEO

https://www.youtube.com/watch?v=2R503Grq_HE

Custom Plugins

  • You can create your own plugin for your tools and import the data into the platform.

Reporting

  • You can generate professional reports with the format of your templates. (en,es)

Customer Features

  • Allows your customers to perform
  • Tracking and export of reported incidents.
  • Online access of incidents at managerial and technical

Security Company Features

  • Allows your administrators and pentester users to perform.
  • Creating users for customer projects and pentester users.
  • Tracking in different states of the incidents found in an ethical hacking project.

Authors

Colaborators

Requirements

  • Apache php 5.6 (modules php5.6-gd php5.6-json php5.6-mbstring php5.6-xsl php5.6-zip)
  • Mysql 5.5

Recommendations

  • Use filter allow from ip origin at .htaccess
  • Install certificadte SSL to use the system, (eg. https://letsencrypt.org)

Initial Setup

  • Create directory vuldash and clone vuldash
    1. mkdir /var/www/vuldash
    2. cd /var/www/vuldash
    3. git clone https://github.com/talsoft/vuldash.git dashboard
  • Apache VirtualHost Minimal setup
    1. nano /etc/apache2/sites-enabled/000-default.conf
  • Into VirtualHost Change
    1. DocumentRoot --> /var/www/vuldash
    2. Directory --> <Directory /var/www/vuldash>
  • Apache settings
    1. a2enmod rewrite
    2. services apache2 restart

Database

  • Edit file application/config/database.php to change credentials conection.
    1. nano dashboard/application/config/database.php
  • Create database and user vuldash
  • Import vuldashdb.sql into mysql database

Application setup

  • Edit file application/config/app.php to change setting application.
  • Change config of server mail account to send notificacion of activation accounts.
  • Change values google_site_key and google_secret_key to use Captha Google.

Usage

  • Access vuldash (eg: http://localhost/dashboard)
  • First login with user: [email protected] pass: admin
  • Add users of vuldash with roles administrator and tester.
  • Add the system tables of type of incidents state, project type, project state, incidents type and objetive state.
  • Add clients and users clients.
  • Assign a project to a client.

From projects

  • Import XML nmap results

From Incident

  • Import XML Zap proxy Alerts
  • Import XML Openvas report (coming soon)

Templates Reports

  • You can change report template into directory vuldash/assets/odt-templates/
  • Add _en or _sp at the end of the name from choose that languages

Tips

  • You have error in generate report or incidents?
    1. Check folder "tmp" in the site root and set permission for write.
    2. Check the report language in the proyect properties with the name of report template
Note that the project description data, including the texts, logos, images, and/or trademarks, for each open source project belongs to its rightful owner. If you wish to add or remove any projects, please contact us at [email protected].