Awesome Open Source
Awesome Open Source


purify
Purify

All-in-one tool for managing vulnerability reports

🎮 Demo

📃 Docs

📹 Quick Vimeo

GitHub release (latest by date including pre-releases) GitHub (Pre-)Release Date GitHub Workflow Status (branch) GitHub closed issues

Description

The goal of Purify to be an easy-in-use and efficient tool to simplify a workflow of managing vulnerabilities delivered from various (even custom) tools.

Purify is aims to be a tool-agnostic application. Tool independence makes it possible to analyze results/findings/reports of any toolset. Technically, the report you want to upload should be one of the following:

  • JSON file
  • XML file
  • JSON object (most webhooks dispatch events as separate JSON objects)

This means you don't need any special plug-ins to parse incoming reports. For this Purify introduces the concept of templates. Templates are code-free and user-friendly structures that parse reports the way you tell them.

Purify is able to remove duplicate results among various vulnerability scanners or tools. In addition, it can combine several results of the same tool based on selected fields and it is fully configurable. Purify does all this work to reduce the headache of the analyst.

Collect all your findings in one place, review/validate/track them, collaborate with your teammates, receive notifications via Slack, create Jira tickets and many more.

Getting started

Questions

For questions and support please use Github Discussions. The issue list of this repo is exclusively for bug reports and feature requests.

Built With

  • Nest - The web framework used
  • Vuetify - Material Component Framework for Vue

License

This project is licensed under the MIT License - see the LICENSE.md file for details


Get A Weekly Email With Trending Projects For These Topics
No Spam. Unsubscribe easily at any time.
vue (4,186
security (1,874
security-tools (402
infosec (197
security-audit (138
nestjs (132
vulnerability-scanners (91
vuetify (63
security-automation (62
devsecops (50
appsec (42
vulnerability-assessment (35
vulnerability-management (25