SecurityManageFramwork

Security Manage Framwork is a security management platform for enterprise intranet, which includes asset management, vulnerability management, account management, knowledge base management, security scanning automation function modules, and can be used for internal security management. This platform is designed to help Party A with fewer security personnel, complicated business lines, difficult periodic inspection and low automation to better achieve internal safety management.

Github星跟踪图

SecurityManageFramwork-SeMF

Travis
Github License
GitHub stars

README English, 中文

Introduction

SEMF is a security management platform for enterprise intranet, which includes functions of asset management, vulnerability management, account management, knowledge base management and security scanning automation. It can be used for internal security management.

This platform aims to help Party A with fewer security personnel, complicated business lines, difficult periodic inspection and low automation to better achieve internal safety management. This software is only used for internal IT asset management, no aggressive behavior. Users are requested to abide by the Network Security Law of the People's Republic of China (http://www.npc.gov.cn/npc/xinwen/2016-11/07/content_2001605.htm). They are not required to use SEMF for unauthorized testing. The authors are not liable for any joint and several legal responsibilities.

If you like it, please click Star. If you don't intend to contribute, don't Fork. The later version of Fork will not automatically update the latest version synchronously. You won't enjoy the pleasure and surprise of the latest version.

The original address of this project:
https://gitee.com/gy071089/SecurityManageFramwork

Author:残源

Architecture

posterior : python3 + django2 + rabbitmq

Front-end : layui + bootstarp,

Using Open Source Templates X-admin:http://x.xuebingsi.com/

Characteristic

  • User type and privilege information can be customized, and four types of security personnel, operation and maintenance personnel, network personnel and business personnel can be generated in initialization.

  • Enterprise IT asset types and asset attributes can be customized in the background and extended as needed.

  • Intranet asset discovery and port scanning can be automated

  • Complete vulnerability tracking and scanner vulnerability filtering

  • Network mapping, for large enterprise intranet and extranet mapping management is complex, reservation function

  • Knowledge base management, for security information sharing, is divided into announcement category and popular science category.

  • Vulnerability library management, this module docks with cnvd vulnerability Library

  • Plug-in-based vulnerability scanning function can be added by itself

  • Weak Password Detection for Multiple Protocols

  • AWVS (Acunetix Web Vulnerability Scanner) Interface Call

  • Nessus (6/7) interface call

Installation

Installation Guide

User Guide

Screenshot

  • Login Registration Page
    Login Registration Page
  • System Home Page
    System Home Page
  • Asset management
    Asset management
  • Details of assets
    Details of assets
  • Vulnerability management
    Vulnerability management
  • Report Center
    Report Center

Contribution

  1. This project is currently only self-maintenance, hope that people with lofty ideals can help improve the system, details can be added to the QQ group, contact the group owner can be.
    qq交流群
  2. If you have other customization requirements, you can contact me by email at gy071089@outlook.com.

主要指标

概览
名称与所有者we1h0/SecurityManageFramwork
主编程语言Python
编程语言Python (语言数: 4)
平台
许可证GNU General Public License v3.0
所有者活动
创建于2018-06-01 02:59:30
推送于2022-01-06 22:25:15
最后一次提交2020-04-20 10:30:15
发布数1
最新版本名称v1.1 (发布于 )
第一版名称v1.1 (发布于 )
用户参与
星数428
关注者数26
派生数156
提交数55
已启用问题?
问题数5
打开的问题数3
拉请求数1
打开的拉请求数1
关闭的拉请求数0
项目设置
已启用Wiki?
已存档?
是复刻?
已锁定?
是镜像?
是私有?