Skip to content

talsoft/vuldash

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

15 Commits

application

application

 
 

assets

assets

 
 

js

js

 
 

less

less

 
 

setup

setup

 
 

system

system

 
 

tmp

tmp

 
 

.htaccess

.htaccess

 
 

LICENSE

LICENSE

 
 

README.md

README.md

 
 

bower.json

bower.json

 
 

gulpfile.js

gulpfile.js

 
 

index.php

index.php

 
 

package.json

package.json

 
 

vuldash.sql

vuldash.sql

 
 

Repository files navigation

vuldash (Vulnerability Dashboard)

Vuldash allows managing projects ethical hacking together with the group of pentester and the client, showing the problems concisely. Can generate business and technical reports, as also perform a life cycle of the project with the client.

DEMO VIDEO

https://www.youtube.com/watch?v=2R503Grq_HE

Custom Plugins

  • You can create your own plugin for your tools and import the data into the platform.

Reporting

  • You can generate professional reports with the format of your templates. (en,es)

Customer Features

  • Allows your customers to perform
  • Tracking and export of reported incidents.
  • Online access of incidents at managerial and technical

Security Company Features

  • Allows your administrators and pentester users to perform.
  • Creating users for customer projects and pentester users.
  • Tracking in different states of the incidents found in an ethical hacking project.

Authors

Colaborators

  • Cristian Maureira @subredes

Requirements

  • Apache php 5.6 (modules php5.6-gd php5.6-json php5.6-mbstring php5.6-xsl php5.6-zip)
  • Mysql 5.5

Recommendations

  • Use filter allow from ip origin at .htaccess
  • Install certificadte SSL to use the system, (eg. https://letsencrypt.org)

Initial Setup

  • Create directory vuldash and clone vuldash
    1. mkdir /var/www/vuldash
    2. cd /var/www/vuldash
    3. git clone https://github.com/talsoft/vuldash.git dashboard
  • Apache VirtualHost Minimal setup
    1. nano /etc/apache2/sites-enabled/000-default.conf
  • Into VirtualHost Change
    1. DocumentRoot --> /var/www/vuldash
    2. Directory --> <Directory /var/www/vuldash>
  • Apache settings
    1. a2enmod rewrite
    2. services apache2 restart

Database

  • Edit file application/config/database.php to change credentials conection.
    1. nano dashboard/application/config/database.php
  • Create database and user vuldash
  • Import vuldashdb.sql into mysql database

Application setup

  • Edit file application/config/app.php to change setting application.
  • Change config of server mail account to send notificacion of activation accounts.
  • Change values google_site_key and google_secret_key to use Captha Google.

Usage

  • Access vuldash (eg: http://localhost/dashboard)
  • First login with user: [email protected] pass: admin
  • Add users of vuldash with roles administrator and tester.
  • Add the system tables of type of incidents state, project type, project state, incidents type and objetive state.
  • Add clients and users clients.
  • Assign a project to a client.

From projects

  • Import XML nmap results

From Incident

  • Import XML Zap proxy Alerts
  • Import XML Openvas report (coming soon)

Templates Reports

  • You can change report template into directory vuldash/assets/odt-templates/
  • Add _en or _sp at the end of the name from choose that languages

Tips

  • You have error in generate report or incidents?
    1. Check folder "tmp" in the site root and set permission for write.
    2. Check the report language in the proyect properties with the name of report template

About

Vulnerability Dashboard

www.vuldash.com

Topics

dashboard cybersecurity vulnerability infosec pentest vulnerability-management incident infosec-dashboard pentester-users vulnerability-dashboard pentest-dasboard

Resources

Readme

License

GPL-3.0 license
Activity

Stars

31 stars

Watchers

3 watching

Forks

13 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages