https://github.com/Patrowl/PatrowlManager
PatrOwl - Open Source, Smart and Scalable Security Operations Orchestration Platform
https://github.com/Patrowl/PatrowlManager
api automation incident-response ioc orchestration patrowl scans secops security-automation security-scanner security-tools thehive threat-hunting threat-intelligence vulnerabilities vulnerability-detection vulnerability-management vulnerability-scanners
Last synced: 14 days ago
JSON representation
PatrOwl - Open Source, Smart and Scalable Security Operations Orchestration Platform
- Host: GitHub
- URL: https://github.com/Patrowl/PatrowlManager
- Owner: Patrowl
- License: agpl-3.0
- Created: 2018-07-02T21:16:37.000Z (almost 7 years ago)
- Default Branch: master
- Last Pushed: 2024-03-31T16:46:15.000Z (about 1 year ago)
- Last Synced: 2024-03-31T17:44:20.719Z (about 1 year ago)
- Topics: api, automation, incident-response, ioc, orchestration, patrowl, scans, secops, security-automation, security-scanner, security-tools, thehive, threat-hunting, threat-intelligence, vulnerabilities, vulnerability-detection, vulnerability-management, vulnerability-scanners
- Language: HTML
- Homepage: https://www.patrowl.io
- Size: 2.52 MB
- Stars: 608
- Watchers: 26
- Forks: 112
- Open Issues: 155
-
Metadata Files:
- Readme: README.md
- Funding: .github/FUNDING.yml
- License: LICENSE
- Security: SECURITY.md
- Authors: AUTHORS
Awesome Lists containing this project
- Self-Hosting-Guide - Patrowl - Open Source, Smart and Scalable Security Operations Orchestration Platform. (Tools for Self-Hosting / Automation)
README
[](https://gitter.im/Patrowl/Support)
[](https://snyk.io/test/github/Patrowl/PatrowlManager)
[](https://travis-ci.com/Patrowl/PatrowlManager)
[](https://www.codacy.com/app/MaKyOtOx/PatrowlManager)
[](https://inventory.rawsec.ml/)
# **PatrOwl**
[PatrOwl](https://www.patrowl.io/) is a scalable, free and open-source solution for orchestrating Security Operations.
**PatrowlManager** is the Front-end application for managing the assets, reviewing risks on real-time, orchestrating the operations (scans, searches, API calls, ...), aggregating the results, relaying alerts on third parties (ex: Incident Response platform like [TheHive](https://github.com/TheHive-Project/TheHive/), Splunk, ...) and providing the reports and dashboards. Operations are performed by the [PatrowlEngines](https://github.com/Patrowl/PatrowlEngines/) instances. Don't forget to install and deploy them ;)
# Project pitch desk
[](https://docs.google.com/presentation/d/1bYUYzsGZBQJrq193rz98wIgjZam7y2vaBQ7C2uS0HaM/edit#slide=id.p)
# Try it now!
To try PatrOwl, install it by reading the [Installation Guide](https://github.com/Patrowl/PatrowlDocs/blob/master/installation/installation-guide.md) and the [User Guide](https://github.com/Patrowl/PatrowlDocs/blob/master/installation/user-guide.md).
# Architecture
Fully-Developed in Python, PatrOwl is composed of a Front-end application **PatrowlManager** (Django) communicating with one or multiple **PatrowlEngines** micro-applications (Flask) which perform the scans, analyze the results and format them in a normalized way. It remains incredibly easy to customize all components. Asynchronous tasks and engine scalability are supported by RabbitMQ and Celery.
The PatrowlManager application is reachable using the embedded WEB interface or using the JSON-API. PatrowlEngines are only available through generic JSON-API calls (see Documentation).
# License
PatrOwl is an open source and free software released under the [AGPL](https://github.com/Patrowl/PatrowlManager/blob/master/LICENSE) (Affero General Public License). We are committed to ensure that PatrOwl will remain a free and open source project on the long-run.
# Updates
Information, news and updates are regularly posted on [Patrowl.io Twitter account](https://twitter.com/patrowl_io).
# Contributing
Please see our [Code of conduct](https://github.com/Patrowl/PatrowlDocs/blob/master/support/code_of_conduct.md). We welcome your contributions. Please feel free to fork the code, play with it, make some patches and send us pull requests via [issues](https://github.com/Patrowl/PatrowlManager/issues).
# Roadmap
- [ ] Enhance finding states management
- [ ] Support scan campaigns (multiple scan definition at once)
- [ ] Support cache
- [ ] Refactor static files (remove unused ?)
Follow our public roadmap on Trello [here](https://trello.com/b/rksoIN5y)
# Support
Please [open an issue on GitHub](https://github.com/Patrowl/PatrowlManager/issues) if you'd like to report a bug or request a feature. We are also available on [Gitter](https://gitter.im/Patrowl/Support) to help you out.
If you need to contact the project team, send an email to .
# Pro Edition and SaaS
A commercial Pro Edition is available and officially supported by the PatrOwl company. It includes following extra and awesome features:
- [x] Advanced user management
- [x] RBAC: Multiple roles are supported to restrict users privileges on features
- [x] Multi-tenancy: assets and scans results can be shared with user teams
- [x] 3rd party authentication: Azure Active Directory, ADFS (Windows 2012 and 2016), LDAP
- [x] Terraform+Ansible deployment scripts
- [x] Pro Engines including: ZAP, Nikto, Microsoft Cloud App Security, CloudSploit and Onyphe
- [x] Pro Support
This version is also available on the official SaaS platform.
See: https://patrowl.io/get-started
# Commercial Services
Looking for advanced support, training, integration, custom developments, dual-licensing ? Contact us at [email protected]
# Security contact
Please disclose any security-related issues or vulnerabilities by emailing [email protected], instead of using the public issue tracker.
# Copyright
Copyright (C) 2018-2021 Nicolas MATTIOCCO ([@MaKyOtOx](https://twitter.com/MaKyOtOx) - [email protected])
# Travis build status
| Branch | Status |
|---|---|
| master | [](https://travis-ci.com/Patrowl/PatrowlManager) |
| develop | [](https://travis-ci.com/Patrowl/PatrowlManager) |