Welcome to Vulnerability Catalog project, a catalog for Information Security Management designed for environments with multiple or diffuse vulnerability-related information sources.
git clone https://github.com/daavelino/vulnerability-catalog cd vulnerability-catalog ./setup.sh # only during the first install ./run.sh
Check the Wiki for more information.
Storing and keep track of all vulnerabilities found on your environment by using a centralized, easy to use and organized catalogue is a way more secure than using the traditional spreadsheets.
With the Panorama, gain insights about what needs to be improved, track progress and effort, design better strategies and reduce risks by visualising the environment as a whole.
The idea to start this effort came from my experience trying to keep track of vulnerabilities during the Olympic and Paralympic Games at Rio 2016 - The Rio de Janeiro Olympics. During that time, I realized three hard things about vulnerability management:
So, Vulnerability Catalog try to make things a little bit easier. With Catalog, we can unify, put data into a normal basis and manage vulnerabilities better than if you try to do this by using sheets or search and reading reports one-by-one each time you need an information.
Please check the wiki for a step-by-step approach.
and others (you know who you are) for important feedbacks and to keep me straight in my path.
License: MIT License. Author: Daniel Avelino
Proudly made in .