https://github.com/faloker/purify

All-in-one tool for managing vulnerability reports from AppSec pipelines
https://github.com/faloker/purify

appsec devsecops infosec nestjs secops security security-audit security-automation security-tools vuetify vulnerability-assessment vulnerability-management vulnerability-scanners

Last synced: about 1 month ago
JSON representation

All-in-one tool for managing vulnerability reports from AppSec pipelines

• Host: GitHub
• URL: https://github.com/faloker/purify
• Owner: faloker
• License: mit
• Created: 2020-01-09T20:15:53.000Z (over 4 years ago)
• Default Branch: develop
• Last Pushed: 2023-01-11T22:45:30.000Z (over 1 year ago)
• Last Synced: 2024-05-31T09:39:54.040Z (4 months ago)
• Topics: appsec, devsecops, infosec, nestjs, secops, security, security-audit, security-automation, security-tools, vuetify, vulnerability-assessment, vulnerability-management, vulnerability-scanners
• Language: Vue
• Homepage: https://faloker.gitbook.io/purify
• Size: 11.2 MB
• Stars: 104
• Watchers: 9
• Forks: 18
• Open Issues: 47
• Metadata Files:
  • Readme: README.md
  • License: LICENSE.md
  • Code of conduct: CODE_OF_CONDUCT.md

Awesome Lists containing this project

• awesome-hacking-lists - faloker/purify - All-in-one tool for managing vulnerability reports from AppSec pipelines (Vue)

README

        


  


  

  

  


  Purify

  




All-in-one tool for managing vulnerability reports




   🎮

  Demo

  

  


   📃

  Docs

    

    


   📹

  Quick Vimeo





  

    

  

  

    

  

  

    

  

  

    

  





  

     

  

  

    

  



## Description

The goal of Purify to be an easy-in-use and efficient tool to simplify a workflow of managing vulnerabilities delivered from various (even custom) tools.

Purify is aims to be a tool-agnostic application. Tool independence makes it possible to analyze results/findings/reports of any toolset. Technically, the report you want to upload should be one of the following:

- JSON file

- XML file

- JSON object (most webhooks dispatch events as separate JSON objects)

This means **you don't need any special plug-ins** to parse incoming reports. For this Purify introduces the concept of templates. Templates are code-free and user-friendly structures that parse reports the way you tell them.

Purify is able to remove duplicate results among various vulnerability scanners or tools. In addition, it can combine several results of the same tool based on selected fields and it is fully configurable. Purify does all this work to reduce the headache of the analyst.

Collect all your findings in one place, review/validate/track them, collaborate with your teammates, receive notifications via Slack, create Jira tickets and many more.

## Getting started

- [Official Documentation](https://faloker.gitbook.io/purify)

- [Live Demo](https://purify-develop.herokuapp.com)

  - email: [email protected]

  - password: 123456

## Questions

For questions and support please use [Github Discussions](https://github.com/faloker/purify/discussions/new). The issue list of this repo is exclusively for bug reports and feature requests.

## Built With

- [Nest](https://github.com/nestjs/nest) - The web framework used

- [Vuetify](https://github.com/vuetifyjs/vuetify) - Material Component Framework for Vue

## License

This project is licensed under the MIT License - see the [LICENSE.md](LICENSE.md) file for details