{"id":13669566,"url":"https://github.com/smarttang/w3a_SOC","last_synced_at":"2025-04-27T04:34:09.658Z","repository":{"id":2563400,"uuid":"14888883","full_name":"smarttang/w3a_SOC","owner":"smarttang","description":"元豚科技 - 基于日志安全分析做切入，做最好用的「云原生安全运维工作台」","archived":false,"fork":false,"pushed_at":"2024-05-23T07:33:42.000Z","size":358915,"stargazers_count":295,"open_issues_count":0,"forks_count":153,"subscribers_count":25,"default_branch":"master","last_synced_at":"2024-11-11T06:37:11.360Z","etag":null,"topics":["anaylsis","golang","hacker","java","mybatis-plus","security","security-tools","springboot","vue"],"latest_commit_sha":null,"homepage":"","language":"Python","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"other","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/smarttang.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2013-12-03T09:26:11.000Z","updated_at":"2024-10-17T17:30:04.000Z","dependencies_parsed_at":"2024-08-02T08:05:23.698Z","dependency_job_id":"f2017ef2-f9c7-407c-b950-94a74893ec67","html_url":"https://github.com/smarttang/w3a_SOC","commit_stats":{"total_commits":126,"total_committers":2,"mean_commits":63.0,"dds":"0.11111111111111116","last_synced_commit":"590dfcee2568e2c30f19698f1b54c7a9d10691f9"},"previous_names":[],"tags_count":16,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/smarttang%2Fw3a_SOC","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/smarttang%2Fw3a_SOC/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/smarttang%2Fw3a_SOC/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/smarttang%2Fw3a_SOC/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/smarttang","download_url":"https://codeload.github.com/smarttang/w3a_SOC/tar.gz/refs/heads/master","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":251089408,"owners_count":21534511,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["anaylsis","golang","hacker","java","mybatis-plus","security","security-tools","springboot","vue"],"created_at":"2024-08-02T08:01:17.636Z","updated_at":"2025-04-27T04:34:04.646Z","avatar_url":"https://github.com/smarttang.png","language":"Python","funding_links":[],"categories":["PHP"],"sub_categories":[],"readme":"\u003cp align=\"center\"\u003e\u003cimg style=\"width:660px\" title=\"Run example\" alt=\"Run example\" src=\"/WechatIMG204 .png\"\u003e\u003c/p\u003e\n\n\u003cp align=\"center\"\u003e\n元豚科技 - 基于日志安全分析做切入，做最好用的「云原生安全运维工作台」\u003cbr\u003e\n\u003c/p\u003e\n\n![](https://img.shields.io/badge/golang-1.17.2%20-green)\n![](https://img.shields.io/badge/openjdk-15.0.5-green)\n![](https://img.shields.io/badge/W3A%20SOC-v2.0-green)\n![](https://img.shields.io/badge/%E7%AD%89%E7%BA%A7%E4%BF%9D%E6%8A%A4%E4%B8%89%E7%BA%A7-%E6%97%A5%E5%BF%97%E5%AE%A1%E8%AE%A1-green)\n![](https://img.shields.io/badge/%E5%91%8A%E8%AD%A6%E7%9B%91%E6%8E%A7-%E9%92%89%E9%92%89-green)\n![](https://img.shields.io/badge/%E5%91%8A%E8%AD%A6%E7%9B%91%E6%8E%A7-%E4%BC%81%E4%B8%9A%E5%BE%AE%E4%BF%A1-green)\n![](https://img.shields.io/badge/Kubernetes-1.20.6-green)\n![](https://img.shields.io/badge/%20docker--compose-1.29.2-green)\n\n\n**主要特性**\n- 日志分析: 日志存放在Kafka，Agent结合规则匹配攻击行为，并上报到W3A SOC平台。\n- 工程分析: 针对工程代码进行API分析、工程组成分析、组件扫描、静态代码漏洞检测等。\n- Web漏洞扫描: 基于Arachni进行结合漏洞扫描，资产跟Web漏洞扫描联动巡检。\n- 资产采集: 打通阿里云、腾讯云，采集云上资产（域名、云服务、容器等）进行快速收集、定时同步，摸清家底。\n- 漏洞管理：在线托管所有漏洞，可以用于打通内部工作流的汇聚。\n- 告警整合: 实现钉钉、企业微信的联动告警机制，统计攻击行为，联动。\n- 流量分析：NIDS(Suricate)入侵检测支持，采集汇聚到工作台。\n\n**特点/技术栈**\n- 部署支持：docker-compose、Kubernetes。\n- 整体架构：基于 Filebeat(采集/清洗) + Kafka(汇聚) + ElasticSearch(检索) + 各种第三方开源能力 + 自研的工具 + 云原生/物理机环境\n- 技术实现：后端基于Java，前端基于Vue，数据库基于MYSQL、工具基于Golang。\n- 业务融合：加入LDAP登录支持，可以并入业务单点登录SSO，融合同一套登录体系。\n\n**目标**\n- 满足安全合规需求、满足日常安全技术需求，帮助安全人员、安全负责人、运维负责人快速实现一体化安全运维工作台，助力快速做出成绩，达成KPI。\n- 让客户少花钱，尽最大努力，把所有涉及到的安全基础设施做集成，开箱就用，无需再配置。\n- 在云原生环境下，更加友好的支持业务的发展，满足云原生环境下缺失的安全闭环和短板。\n\n### 部署文档\n\n参考在线文档：http://w3asoc.aidolphins.com/\n\n### DEMO\n\n应用管理界面:(新版，以应用作为中心)\n\n\u003cimg style=\"max-width:100%;\" title=\"Run example\" alt=\"Run example\" src=\"/newpic/main.png\"\u003e\n\n大盘主界面:\n\n\u003cimg style=\"max-width:100%;\" title=\"Run example\" alt=\"Run example\" src=\"/newpic/dashboard.png\"\u003e\n\n规则管理主界面：\n\n\u003cimg style=\"max-width:100%;\" title=\"Run example\" alt=\"Run example\" src=\"/newpic/rules.png\"\u003e\n\nWeb访问日志界面:\n\n\u003cimg style=\"max-width:100%;\" title=\"Run example\" alt=\"Run example\" src=\"/newpic/web.png\"\u003e\n\n攻击详情页面:\n\n\u003cimg style=\"max-width:100%;\" title=\"RUN\" alt=\"RUN\" src=\"/newpic/attack.png\"\u003e\n\n工程分析页面：\n\n\u003cimg style=\"max-width:100%;\" title=\"RUN\" alt=\"RUN\" src=\"/newpic/gongcheng.png\"\u003e\n\n\n### 备注\n\n- 诸位发现问题请直接提交issue，如果有定制化需求，麻烦支持下收费版本，在内部推动下元豚科技的产品啥的，感激不尽。\n- 项目元豚科技接管之后，起码不会荒废，只要公司一直在，项目就会更新。\n- 北京地区，找元豚科技做等级保护二、三级免费使用元豚旗下产品的商业版、社区版。\n- 旧的版本在release，那个版本是开源的，代码开放，有需要自行提取。\n\n### 欢迎加群\n\n\u003cimg style=\"width:200px\" title=\"Run example\" alt=\"Run example\" src=\"/WechatIMG227.jpeg\"\u003e\n\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fsmarttang%2Fw3a_SOC","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fsmarttang%2Fw3a_SOC","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fsmarttang%2Fw3a_SOC/lists"}