{"id":13606803,"url":"https://github.com/aau-network-security/haaukins","last_synced_at":"2026-01-21T21:44:37.665Z","repository":{"id":37850047,"uuid":"142140375","full_name":"aau-network-security/haaukins","owner":"aau-network-security","description":"A Highly Accessible and Automated Virtualization Platform for Security Education","archived":false,"fork":false,"pushed_at":"2025-08-21T20:30:13.000Z","size":21607,"stargazers_count":190,"open_issues_count":18,"forks_count":40,"subscribers_count":13,"default_branch":"master","last_synced_at":"2025-09-08T22:29:55.471Z","etag":null,"topics":["cli","ctfd","cybersecurity","daemon","docker","education","find-vulnerabilities","game","go","golang","haaukins-platform","hackthebox","linux","macos","security-education","virtualbox","virtualization","windows"],"latest_commit_sha":null,"homepage":"https://general.haaukins.com","language":"Go","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"apache-2.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/aau-network-security.png","metadata":{"files":{"readme":"readme.md","changelog":null,"contributing":".github/CONTRIBUTING.md","funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":"SECURITY.md","support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null}},"created_at":"2018-07-24T10:04:05.000Z","updated_at":"2025-08-04T07:34:17.000Z","dependencies_parsed_at":"2025-04-12T11:45:13.083Z","dependency_job_id":null,"html_url":"https://github.com/aau-network-security/haaukins","commit_stats":null,"previous_names":[],"tags_count":69,"template":false,"template_full_name":null,"purl":"pkg:github/aau-network-security/haaukins","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/aau-network-security%2Fhaaukins","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/aau-network-security%2Fhaaukins/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/aau-network-security%2Fhaaukins/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/aau-network-security%2Fhaaukins/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/aau-network-security","download_url":"https://codeload.github.com/aau-network-security/haaukins/tar.gz/refs/heads/master","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/aau-network-security%2Fhaaukins/sbom","scorecard":{"id":159639,"data":{"date":"2025-08-11","repo":{"name":"github.com/aau-network-security/haaukins","commit":"eeb3e7f0f709a294bce556ddc54e3c6c154325bd"},"scorecard":{"version":"v5.2.1-40-gf6ed084d","commit":"f6ed084d17c9236477efd66e5b258b9d4cc7b389"},"score":3.4,"checks":[{"name":"Maintained","score":0,"reason":"0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0","details":null,"documentation":{"short":"Determines if the project is \"actively maintained\".","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#maintained"}},{"name":"Code-Review","score":2,"reason":"Found 2/10 approved changesets -- score normalized to 2","details":null,"documentation":{"short":"Determines if the project requires human code review before pull requests (aka merge requests) are merged.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#code-review"}},{"name":"Security-Policy","score":9,"reason":"security policy file detected","details":["Info: security policy file detected: SECURITY.md:1","Info: Found linked content: SECURITY.md:1","Warn: One or no descriptive hints of disclosure, vulnerability, and/or timelines in security policy","Info: Found text in security policy: SECURITY.md:1"],"documentation":{"short":"Determines if the project has published a security policy.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#security-policy"}},{"name":"Dangerous-Workflow","score":10,"reason":"no dangerous workflow patterns detected","details":null,"documentation":{"short":"Determines if the project's GitHub Action workflows avoid dangerous patterns.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#dangerous-workflow"}},{"name":"Token-Permissions","score":0,"reason":"detected GitHub workflow tokens with excessive permissions","details":["Warn: no topLevel permission defined: .github/workflows/checkbrname.yml:1","Warn: no topLevel permission defined: .github/workflows/codeql-analysis.yml:1","Warn: no topLevel permission defined: .github/workflows/deploy-prod.yml:1","Warn: no topLevel permission defined: .github/workflows/release-develop.yml:1","Warn: no topLevel permission defined: .github/workflows/test.yml:1","Info: no jobLevel write permissions found"],"documentation":{"short":"Determines if the project's workflows follow the principle of least privilege.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#token-permissions"}},{"name":"Binary-Artifacts","score":10,"reason":"no binaries found in the repo","details":null,"documentation":{"short":"Determines if the project has generated executable (binary) artifacts in the source repository.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#binary-artifacts"}},{"name":"CII-Best-Practices","score":0,"reason":"no effort to earn an OpenSSF best practices badge detected","details":null,"documentation":{"short":"Determines if the project has an OpenSSF (formerly CII) Best Practices Badge.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#cii-best-practices"}},{"name":"Fuzzing","score":0,"reason":"project is not fuzzed","details":["Warn: no fuzzer integrations found"],"documentation":{"short":"Determines if the project uses fuzzing.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#fuzzing"}},{"name":"Pinned-Dependencies","score":1,"reason":"dependency not pinned by hash detected -- score normalized to 1","details":["Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/checkbrname.yml:14: update your workflow using https://app.stepsecurity.io/secureworkflow/aau-network-security/haaukins/checkbrname.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/checkbrname.yml:16: update your workflow using https://app.stepsecurity.io/secureworkflow/aau-network-security/haaukins/checkbrname.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql-analysis.yml:28: update your workflow using https://app.stepsecurity.io/secureworkflow/aau-network-security/haaukins/codeql-analysis.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql-analysis.yml:41: update your workflow using https://app.stepsecurity.io/secureworkflow/aau-network-security/haaukins/codeql-analysis.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql-analysis.yml:48: update your workflow using https://app.stepsecurity.io/secureworkflow/aau-network-security/haaukins/codeql-analysis.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql-analysis.yml:62: update your workflow using https://app.stepsecurity.io/secureworkflow/aau-network-security/haaukins/codeql-analysis.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/deploy-prod.yml:20: update your workflow using https://app.stepsecurity.io/secureworkflow/aau-network-security/haaukins/deploy-prod.yml/master?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/deploy-prod.yml:30: update your workflow using https://app.stepsecurity.io/secureworkflow/aau-network-security/haaukins/deploy-prod.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/release-develop.yml:20: update your workflow using https://app.stepsecurity.io/secureworkflow/aau-network-security/haaukins/release-develop.yml/master?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/release-develop.yml:23: update your workflow using https://app.stepsecurity.io/secureworkflow/aau-network-security/haaukins/release-develop.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:26: update your workflow using https://app.stepsecurity.io/secureworkflow/aau-network-security/haaukins/test.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/test.yml:28: update your workflow using https://app.stepsecurity.io/secureworkflow/aau-network-security/haaukins/test.yml/master?enable=pin","Warn: downloadThenRun not pinned by hash: .github/workflows/test.yml:36","Info:   0 out of  10 GitHub-owned GitHubAction dependencies pinned","Info:   0 out of   2 third-party GitHubAction dependencies pinned","Info:   1 out of   1 goCommand dependencies pinned","Info:   0 out of   1 downloadThenRun dependencies pinned"],"documentation":{"short":"Determines if the project has declared and pinned the dependencies of its build process.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#pinned-dependencies"}},{"name":"License","score":10,"reason":"license file detected","details":["Info: project has a license file: LICENSE:0","Info: FSF or OSI recognized license: Apache License 2.0: LICENSE:0"],"documentation":{"short":"Determines if the project has defined a license.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#license"}},{"name":"Packaging","score":-1,"reason":"packaging workflow not detected","details":["Warn: no GitHub/GitLab publishing workflow detected."],"documentation":{"short":"Determines if the project is published as a package that others can easily download, install, easily update, and uninstall.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#packaging"}},{"name":"Branch-Protection","score":0,"reason":"branch protection not enabled on development/release branches","details":["Warn: branch protection not enabled for branch 'master'"],"documentation":{"short":"Determines if the default and release branches are protected with GitHub's branch protection settings.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#branch-protection"}},{"name":"Signed-Releases","score":0,"reason":"Project has not signed or included provenance with any releases.","details":["Warn: release artifact 2.6.9 not signed: https://api.github.com/repos/aau-network-security/haaukins/releases/73196433","Warn: release artifact 2.6.8 not signed: https://api.github.com/repos/aau-network-security/haaukins/releases/63268431","Warn: release artifact 2.6.7 not signed: https://api.github.com/repos/aau-network-security/haaukins/releases/60879006","Warn: release artifact 2.6.6 not signed: https://api.github.com/repos/aau-network-security/haaukins/releases/51481255","Warn: release artifact 2.6.5-pre not signed: https://api.github.com/repos/aau-network-security/haaukins/releases/51269881","Warn: release artifact 2.6.9 does not have provenance: https://api.github.com/repos/aau-network-security/haaukins/releases/73196433","Warn: release artifact 2.6.8 does not have provenance: https://api.github.com/repos/aau-network-security/haaukins/releases/63268431","Warn: release artifact 2.6.7 does not have provenance: https://api.github.com/repos/aau-network-security/haaukins/releases/60879006","Warn: release artifact 2.6.6 does not have provenance: https://api.github.com/repos/aau-network-security/haaukins/releases/51481255","Warn: release artifact 2.6.5-pre does not have provenance: https://api.github.com/repos/aau-network-security/haaukins/releases/51269881"],"documentation":{"short":"Determines if the project cryptographically signs release artifacts.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#signed-releases"}},{"name":"SAST","score":7,"reason":"SAST tool detected but not run on all commits","details":["Info: SAST configuration detected: CodeQL","Warn: 0 commits out of 27 are checked with a SAST tool"],"documentation":{"short":"Determines if the project uses static code analysis.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#sast"}},{"name":"Vulnerabilities","score":0,"reason":"22 existing vulnerabilities detected","details":["Warn: Project is vulnerable to: GO-2024-3250 / GHSA-29wx-vh33-7x7r","Warn: Project is vulnerable to: GO-2025-3553 / GHSA-mh63-6h87-95cp","Warn: Project is vulnerable to: GO-2023-2074 / GHSA-m9xq-6h2j-65r2","Warn: Project is vulnerable to: GO-2024-3205 / GHSA-xhr3-wf7j-h255","Warn: Project is vulnerable to: GO-2022-0588 / GHSA-x95h-979x-cf3j","Warn: Project is vulnerable to: GO-2022-0229 / GHSA-cjjc-xp8v-855w","Warn: Project is vulnerable to: GO-2020-0012 / GHSA-ffhg-7mh4-33c4","Warn: Project is vulnerable to: GO-2021-0227 / GHSA-3vm4-22fp-5rfm","Warn: Project is vulnerable to: GO-2022-0968 / GHSA-gwc9-m7rh-j2ww","Warn: Project is vulnerable to: GO-2021-0356 / GHSA-8c26-wmh5-6g9v","Warn: Project is vulnerable to: GO-2024-2961","Warn: Project is vulnerable to: GO-2023-2402 / GHSA-45x7-px36-x8w8","Warn: Project is vulnerable to: GO-2024-3321 / GHSA-v778-237x-gjrc","Warn: Project is vulnerable to: GO-2025-3487 / GHSA-hcg3-q754-cr77","Warn: Project is vulnerable to: GO-2022-0493 / GHSA-p782-xgp4-8hr8","Warn: Project is vulnerable to: GO-2023-2153 / GHSA-m425-mq94-257g / GHSA-qppj-fm5r-hxr3","Warn: Project is vulnerable to: GO-2024-2611 / GHSA-8r3f-844c-mc37","Warn: Project is vulnerable to: GO-2024-2456 / GHSA-449p-3h89-pw88","Warn: Project is vulnerable to: GO-2024-2466 / GHSA-mw99-9chc-xw7r","Warn: Project is vulnerable to: GO-2025-3367 / GHSA-r9px-m959-cxf4","Warn: Project is vulnerable to: GO-2025-3368 / GHSA-v725-9546-7q7m","Warn: Project is vulnerable to: GO-2020-0036 / GHSA-wxc4-f4m6-wwqv"],"documentation":{"short":"Determines if the project has open, known unfixed vulnerabilities.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#vulnerabilities"}}]},"last_synced_at":"2025-08-16T12:58:32.430Z","repository_id":37850047,"created_at":"2025-08-16T12:58:32.431Z","updated_at":"2025-08-16T12:58:32.431Z"},"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":28644149,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-01-21T21:29:11.980Z","status":"ssl_error","status_checked_at":"2026-01-21T21:24:31.872Z","response_time":86,"last_error":"SSL_connect returned=1 errno=0 peeraddr=140.82.121.5:443 state=error: unexpected eof while reading","robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":false,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["cli","ctfd","cybersecurity","daemon","docker","education","find-vulnerabilities","game","go","golang","haaukins-platform","hackthebox","linux","macos","security-education","virtualbox","virtualization","windows"],"created_at":"2024-08-01T19:01:12.546Z","updated_at":"2026-01-21T21:44:37.648Z","avatar_url":"https://github.com/aau-network-security.png","language":"Go","funding_links":[],"categories":["Go","Go (531)","Platforms"],"sub_categories":[],"readme":"\n\u003cp align=\"center\"\u003e \n\u003cimg src=\".github/logo/blue240px.png\"  /\u003e\n\u003cdiv align=\"center\"\u003e\n\u003ca href=\"https://alpha.haaukins.com\"\u003e\n  \u003cimg src=https://img.shields.io/badge/platform-try%20haaukins-brightgreen\u003e\n  \u003c/a\u003e\n  \u003ca href=\"https://www.blackhat.com/eu-19/arsenal/schedule/#haaukins-a-highly-accessible-and-automated-virtualization-platform-for-security-education-18208\"\u003e\n    \u003cimg src=https://img.shields.io/badge/BlackHat%20EU%202019%20-Arsenal-%2323211a52\n   \u003c/a\u003e\n  \u003ca href=\"https://travis-ci.com/aau-network-security/haaukins\"\u003e\n    \u003cimg src=\"https://travis-ci.com/aau-network-security/haaukins.svg?branch=master\" alt=\"Build Status\"\u003e\n  \u003c/a\u003e\n  \u003ca href=\"https://goreportcard.com/badge/github.com/aau-network-security/haaukins\"\u003e\n    \u003cimg src=\"https://goreportcard.com/badge/github.com/aau-network-security/haaukins?style=flat-square\" alt=\"Go Report Card\"\u003e\n  \u003c/a\u003e\n  \u003ca href=\"https://github.com/aau-network-security/haaukins/releases\"\u003e\n    \u003cimg src=\"https://godoc.org/github.com/aau-network-security/haaukins?status.svg\" alt=\"GitHub release\"\u003e\n  \u003c/a\u003e\n   \u003ca href=\"https://www.gnu.org/licenses/gpl-3.0Â\"\u003e\n    \u003cimg src=\"https://img.shields.io/badge/License-GPLv3-blue.svg?longCache=true\u0026style=flat-square\" alt=\"licence\"\u003e\n  \u003c/a\u003e\n  \u003cdiv align =\"center\"\u003e\n  \u003ca href=\"https://github.com/aau-network-security/haaukins/issues\"\u003e\n  \u003cimg src=https://img.shields.io/github/issues/aau-network-security/haaukins?style=flat-square alt=\"issues\"\u003e\n  \n  \u003c/a\u003e\n  \u003ca href=\"https://github.com/aau-network-security/haaukins/network/members\"\u003e\n  \u003cimg src=https://img.shields.io/github/forks/aau-network-security/haaukins \u003e\n  \u003c/a\u003e\n  \u003ca href=\"https://github.com/aau-network-security/haaukins/stargazers\"\u003e\n  \u003cimg src=https://img.shields.io/github/stars/aau-network-security/haaukins\u003e\u003c/a\u003e\n  \u003c/div\u003e\n   \n \u003c/div\u003e\n\u0026nbsp;\n\u003cdiv align=\"center\"\u003e\n\u003ch1\u003eHaaukins \u003c/h1\u003e\n\u003c/div\u003e\n\nHaaukins is a highly accessible and automated virtualization platform for security education, it has three main components (Docker, Virtualbox and Golang), the communication and orchestration between the components managed using Go programming language. The main reason of having Go environment to manage and deploy something on Haaukins platform is that Go’s easy concurrency and parallelism mechanism. \n\nOur primary aim to involve anyone who desire to learn capturing the flag concept in cyber security which is widely accepted approach to learn how to find vulnerability on a system. Despite of all existing platform, Haaukins provides its own virtualized environment to you with operating system which designed to find vulnerabilities\n\n- [__Prerequisites__](#prerequisites)\n- [__Installation__](#installation)\n- [__Getting Dependencies__](#getting-dependencies)\n- [__Testing__](#testing)\n- [__Re-compile proto__](#re-compile-proto)\n- [__Version release__](#version-release)\n- [__Deployment__](#deployment)\n- [__Known issues__](#known-issues)\n- [__Contributing__](#contributing)\n- [__Event requests__](#event-requests)\n- [__Credits__](#credits)  \n- [__License__](#license)\n\n\n## __Prerequisites__\n\nThe following dependencies are required and must be installed separately in order to run daemon in your local environment.\n\n* Linux \n* Docker\n* Go 1.13+\n\nThere is no prerequisites for installing client to your environment. \n\n\u003e **Note**: Linux can be used in virtualized environment as well.\n\n## __Installation__\n\nUse documentation page for installation, other connected repositories and more through documentation site ; https://docs.haaukins.com\n\n## __Getting Dependencies__\n\nHaaukins platform uses `go modules` since version [1.6.4](https://github.com/aau-network-security/haaukins/releases/tag/1.6.4), hence it is quite easy to manage dependencies, you just need to run `go mod download` \n\n## __Testing__\n\nMake sure that you are in `$GOPATH/src/github.com/aau-network-security/haaukins/` directory, to run all test files, following command can be used\n\n```bash\ngo test -v --race  ./...\n```\n\n## __Re-compile proto__\n\nHaaukins platform uses gRPC on communication of client and daemon, so after updating the protocol buffer specification (i.e. daemon/proto/daemon.proto), corresponding golang code generation is done by doing the following:\n```bash\ncd $GOPATH/src/github.com/aau-network-security/haaukins/daemon/\nprotoc -I proto/ proto/daemon.proto --go_out=plugins=grpc:proto\n```\n\n## __Version release__\n\nGoReleaser is handling release section, just tag the commit. \n\n## Deployment \n\nTravis automatically deploys on `server`.\n\nNote: by default the script uses the `~/.ssh/id_rsa` key to push to GitHub.\nYou can override this settings by the `HKN_RELEASE_PEMFILE` env var.\n\n## __Known issues__\n\nGive a  moment and check known issues over [here](https://github.com/aau-network-security/haaukins/issues)\n\n## __Contributing__\n\nHaaukins is an open source project and built on the top of open-source projects. If you are interested, then you are welcome to contribute.\n\nCheck out the [Contributing Guide](.github/CONTRIBUTING.md) to get started.\n\n## __Event requests__\n\nAs AAU, we believe in power of open source community and would like to offer test our platform for organizations and users , if you would like to get your own domain which will be assigned by us please contact us in advance.\n\n## __Credits__\n\n  - Logo designed by [indepedenthand](https://www.behance.net/independenthand)\n\n## __License__\n\n[GNU](https://github.com/aau-network-security/haaukins/blob/master/LICENSE)\n\nCopyright (c) 2019-present, Haaukins\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Faau-network-security%2Fhaaukins","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Faau-network-security%2Fhaaukins","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Faau-network-security%2Fhaaukins/lists"}