A comprehensive Vulnerability Management and Reporting platform built with Django.
- Engagement Management: Track pentest engagements, status, and dates.
- Findings Tracker: Manage vulnerabilities (Finding, Severity, Status) with CVSS support.
- Knowledge Base: Reusable vulnerability templates (OWASP Top 10 included) for faster reporting.
- RBAC System: Distinct roles for Lead Pentesters (Full Access), Pentesters (Execute/Report), and Clients (Read-Only Dashboard).
- Admin Dashboard: "Command Center" with KPIs, Team Activity, and Audit Trail.
- Audit Logging: Tracks all critical actions (Login, Create, Update, Delete).
- Reporting: Generate PDF reports for engagements.
- Backend: Django 5.0, Python 3.11
- Database: PostgreSQL
- Frontend: Tailwind CSS, HTMX, Django Templates
- Admin UI: Django Jazzmin
-
Start & Build:
# Windows: reset_docker.bat # or Manual: docker-compose up -d --build docker-compose exec web python manage.py init_project
-
Access:
- App: http://localhost:8000
- Admin: http://localhost:8000/admin/
- Default Credentials:
admin/admin123
- Engagement Management: Track pentest engagements, status, and dates.
- Findings Tracker: Manage vulnerabilities (Finding, Severity, Status) with CVSS support.
- Knowledge Base: Reusable vulnerability templates (OWASP Top 10 included).
- RBAC System: Distinct roles for Lead Pentesters (Full Access), Pentesters (Execute/Report), and Clients (Read-Only).
- Admin Dashboard: "Command Center" with KPIs and Team Activity.