vulnrepo

VULNRΞPO - Free vulnerability report generator and repository end-to-end encrypted. Complete templates of issues, CWE, CVE, MITRE ATT&CK, PCI DSS, AES encryption, Nmap/Nessus/Burp/OpenVAS issues import, Jira export, TXT/HTML/PDF report, attachments, automatic changelog, statistics, vulnerability management, Security report builder.

171
42
TypeScript

VULNRΞPO - Vulnerability Report Generator & Repository

Check online: https://vulnrepo.com/

Video walkthrough/Tutorial:
Guide

Features

  • Security
    • Project use browser for encrypt/decrypt (AES) and store data in locally. Full confidentiality of data, end-to-end encryption, by default nothing is sent out. No backend system, only front-end technology, pure JS client.
  • Use custom issues templates!
    • The use of templates greatly speeds up the work for pentester or security auditor. Import CVE, CWE, MITRE ATT&CK or PCI DSS data also possible.
  • Import issues from security scanners
    • Supported import from: Nmap, Nessus, Burp, OpenVAS, Bugcrowd, Trivy, NPM, Semgrep, Composer. After importing, easily manage and edit vulnerabilities.
  • TXT & HTML & DOCX & PDF
    • You can download report in TXT, HTML, DOCX formats!. Also encrypted version of HTML report! If you need PDF just ‘print as PDF’ html report.
  • Attachments
    • You can easly attach any file you want to. Screenshot, movie or scanner output in txt. Automatically doing checksum sha256 of attached file.
  • Changelog
    • All important changes in report will be logged in to changelog and update to the next version of the report.
  • Export Issues
    • You can export issues to popular bugtrackers like Atlassian JIRA or use secure way to share only issues.
  • Share report
    • You can share your report using AES encryption by default.
  • API Integration
    • Build your own backend system to store reports!
  • Report template customization
    • New version of HTML report allow easy template edit or CSS.
  • Methodology
    • Use the audit tool to make sure nothing is missing in the report when doing your research!

Development server

Run ng serve for a dev server. Navigate to http://localhost:4200/. The app will automatically reload if you change any of the source files.

Build

Run ng build to build the project. The build artifacts will be stored in the dist/ directory. Use the -c production flag for a production build.

DEV Environment

You can test our latest changes from dev branch, visit: https://dev.vulnrepo.com/

Docker Setup

You can run the project as a docker build using the included docker-compose.yml. Just execute docker-compose up and access it on http://localhost

Licencing

VULNRΞPO is released under the Apache 2.0 Licence