![]()
Bulwark - An Organizational Asset And Vulnerability Management Tool, With Jira Integration, Designed For Generating Application Security Reports
2020-11-20 20:30:00
Author: www.blogger.com(查看原文)
阅读量:185
收藏
tag:blogger.com,1999:blog-8317222231133660547.post-74716093545127303522020-11-20T08:30:00.000-03:002020-11-20T08:30:00.713-03:00Bulwark - An Organizational Asset And Vulnerability Management Tool, With Jira Integration, Designed For Generating Application Security Reports<div class="separator" style="clear: both; text-align: center;"><a href="https://1.bp.blogspot.com/-TzrXMYMqZt4/X7XzST9kwzI/AAAAAAAAUao/hedsy0KV5Y0krxwE7nAiz83MANOMEyu3ACNcBGAsYHQ/s2000/bulwark_1_logo.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="968" data-original-width="2000" height="310" src="https://1.bp.blogspot.com/-TzrXMYMqZt4/X7XzST9kwzI/AAAAAAAAUao/hedsy0KV5Y0krxwE7nAiz83MANOMEyu3ACNcBGAsYHQ/w640-h310/bulwark_1_logo.png" width="640" /></a></div><p><br /></p> <p>An organizational asset and <a href="https://www.kitploit.com/search/label/Vulnerability%20Management" target="_blank" title="vulnerability management">vulnerability management</a> tool, with Jira integration, designed for generating application security reports.</p><span><a name='more'></a></span><p><br /></p><div class="separator" style="clear: both; text-align: center;"><a href="https://1.bp.blogspot.com/-YWpsN37Z624/X7XzlCq4C7I/AAAAAAAAUaw/F7vtvVuQFjcpdvwKw4DTXk9EJReyGupIACNcBGAsYHQ/s1630/bulwark_4_bulwark_report_demo.gif" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="1349" data-original-width="1630" height="530" src="https://1.bp.blogspot.com/-YWpsN37Z624/X7XzlCq4C7I/AAAAAAAAUaw/F7vtvVuQFjcpdvwKw4DTXk9EJReyGupIACNcBGAsYHQ/w640-h530/bulwark_4_bulwark_report_demo.gif" width="640" /></a></div> <br /><span style="font-size: x-large;"><b>Jira Integration</b></span><br /> <p><br /></p><div class="separator" style="clear: both; text-align: center;"><a href="https://1.bp.blogspot.com/-uWNkLcKTnYY/X7XzylWbfXI/AAAAAAAAUa0/PKi-BEzUkBUZMPesErqkaLw0D5s8hx4AACNcBGAsYHQ/s1630/bulwark_5_bulwark_jira_demo.gif" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="1349" data-original-width="1630" height="530" src="https://1.bp.blogspot.com/-uWNkLcKTnYY/X7XzylWbfXI/AAAAAAAAUa0/PKi-BEzUkBUZMPesErqkaLw0D5s8hx4AACNcBGAsYHQ/w640-h530/bulwark_5_bulwark_jira_demo.gif" width="640" /></a></div><p><br /></p><span style="font-size: x-large;"><b>Note</b></span><br /> <p>Please keep in mind, this project is in early development.</p> <br /><span style="font-size: x-large;"><b>Launch with Docker</b></span><br /> <ol> <li>Install <a href="https://www.docker.com/" rel="nofollow" target="_blank" title="Docker">Docker</a></li> <li>Create a <code>.env</code> file and supply the following properties:</li> </ol> <pre><code>MYSQL_DATABASE="bulwark"<br />MYSQL_PASSWORD="bulwark"<br />MYSQL_ROOT_PASSWORD="bulwark"<br />MYSQL_USER="root"<br />MYSQL_DB_CHECK="mysql"<br />DB_PASSWORD="bulwark"<br />DB_URL="172.16.16.3"<br />DB_ROOT="root"<br />DB_USERNAME="bulwark"<br />DB_PORT=3306<br />DB_NAME="bulwark"<br />DB_TYPE="mysql"<br />NODE_ENV="production"<br />DEV_URL="http://localhost:4200"<br />PROD_URL="http://localhost:5000"<br />JWT_KEY="changeme"<br />JWT_REFRESH_KEY="changeme"<br />CRYPTO_SECRET="changeme"<br />CRYPTO_SALT="changeme"<br /></code></pre> <p>Build and start Bulwark containers:</p> <pre><code>docker-compose up -d<br /></code></pre> <p>Start/Stop Bulwark containers:</p> <pre><code>docker-compose start<br />docker-compose stop<br /></code></pre> <p>Remove Bulwark containers:</p> <pre><code>docker-compose down<br /></code></pre> <p>Bulwark will be available at <a href="http://localhost:5000" rel="nofollow" target="_blank" title="localhost:5000">localhost:5000</a></p> <br /><span style="font-size: x-large;"><b>Local Installation</b></span><br /> <pre><code>$ git clone (url)<br />$ cd bulwark<br />$ npm install<br /></code></pre> <p>Run in development mode:</p> <pre><code>$ npm run start:dev<br /></code></pre> <p>Run in production mode:</p> <pre><code>$ npm start<br /></code></pre> <br /><span style="font-size: large;"><b>Environment variables</b></span><br /> <p>Create a <code>.env</code> file on the root directory. This will be parsed with <a href="https://www.npmjs.com/package/dotenv" rel="nofollow" target="_blank" title="dotenv">dotenv</a> by the application.</p> <br /><b><code>DB_PASSWORD</code></b><br /> <p><code>DB_PASSWORD="somePassword"</code></p> <p>Set this variable to database password</p> <br /><b><code>DB_USERNAME</code></b><br /> <p><code>DB_USERNAME="foobar"</code></p> <p>Set this variable to database user name</p> <br /><b><code>DB_URL</code></b><br /> <p><code>DB_URL=something-foo-bar.dbnet</code></p> <p>Set this variable to database URL</p> <br /><b><code>DB_PORT</code></b><br /> <p><code>DB_PORT=3306</code></p> <p>Set this variable to database port</p> <br /><b><code>DB_NAME</code></b><br /> <p><code>DB_NAME="foobar"</code></p> <p>Set this variable to database connection name</p> <br /><b><code>DB_TYPE</code></b><br /> <p><code>DB_TYPE="mysql"</code></p> <p>The application was developed using a MySQL database. See the <a href="https://github.com/typeorm/typeorm/blob/master/docs/connection-options.md#common-connection-options" rel="nofollow" target="_blank" title="typeorm">typeorm</a> documentation for more database options.</p> <br /><b><code>NODE_ENV</code></b><br /> <p><code>NODE_ENV=production</code></p> <p>Set this variable to determine node environment</p> <br /><b><code>DEV_URL="http://localhost:4200"</code></b><br /> <p>Only update if a different port is required</p> <br /><b><code>PROD_URL="http://localhost:5000"</code></b><br /> <p>Only update if a different port is required</p> <br /><b><code>JWT_KEY</code></b><br /> <p><code>JWT_KEY="changeMe"</code></p> <p>Set this variable to the JWT secret</p> <br /><b><code>JWT_REFRESH_KEY</code></b><br /> <p><code>JWT_REFRESH_KEY="changeMe"</code></p> <p>Set this variable to the refresh JWT secret</p> <br /><b><code>CRYPTO_SECRET</code></b><br /> <p><code>CRYPTO_SECRET="randomValue"</code></p> <p>Set this variable to the <a href="https://nodejs.org/api/crypto.html#crypto_crypto_scryptsync_password_salt_keylen_options" rel="nofollow" target="_blank" title="Scrypt">Scrypt</a> password.</p> <br /><b><code>CRYPTO_SALT</code></b><br /> <p><code>CRYPTO_SECRET="randomValue"</code></p> <p>Set this variable to the <a href="https://nodejs.org/api/crypto.html#crypto_crypto_scryptsync_password_salt_keylen_options" rel="nofollow" target="_blank" title="Scrypt">Scrypt</a> salt.</p> <br /><span style="font-size: large;"><b>Empty <code>.env</code> file template</b></span><br /> <pre><code>DB_PASSWORD=""<br />DB_URL=""<br />DB_USERNAME=""<br />DB_PORT=3306<br />DB_NAME=""<br />DB_TYPE=""<br />NODE_ENV=""<br />DEV_URL="http://localhost:4200"<br />PROD_URL="http://localhost:5000"<br />JWT_KEY=""<br />JWT_REFRESH_KEY=""<br />CRYPTO_SECRET=""<br />CRYPTO_SALT=""<br /></code></pre> <br /><span style="font-size: large;"><b>Create Initial Database Migration</b></span><br /> <ol> <li>Create the initial database migration</li> </ol> <pre><code>$ npm run migration:init<br /></code></pre> <ol start="2"> <li>Run the initial database migration</li> </ol> <pre><code>$ npm run migration:run<br /></code></pre> <br /><span style="font-size: x-large;"><b>Default credentials</b></span><br /> <p>A user account is created on initial startup with the following credentials:</p> <ul> <li>email: <code>[email protected]</code></li> <li>password: <code>changeMe</code></li> </ul> <p>Upon first login, update the default user password under the profile section.</p> <br /><span style="font-size: x-large;"><b>Built With</b></span><br /> <ul> <li><a href="https://typeorm.io/#/" rel="nofollow" target="_blank" title="Typeorm">Typeorm</a> - The ORM used</li> <li><a href="https://angular.io/" rel="nofollow" target="_blank" title="Angular">Angular</a> - The <a href="https://www.kitploit.com/search/label/Angular" target="_blank" title="Angular">Angular</a> Framework</li> <li><a href="https://expressjs.com/" rel="nofollow" target="_blank" title="Express">Express</a> - A minimal and flexible <a href="https://www.kitploit.com/search/label/Node.js" target="_blank" title="Node.js">Node.js</a> web application framework</li> </ul> <br /><span style="font-size: x-large;"><b>Team</b></span><br /> <p>The Softrams Bulwark core development team are:</p> <ul> <li><a href="https://github.com/whamo12" rel="nofollow" target="_blank" title="Alejandro Saenz">Alejandro Saenz</a> aka <code>Whamo12</code></li> <li><a href="https://github.com/skewled" rel="nofollow" target="_blank" title="Bill Jones">Bill Jones</a> aka <code>skewled</code></li> </ul> <br /><br /><div style="text-align: center;"><b><span style="font-size: x-large;"><a class="kiploit-download" href="https://github.com/softrams/bulwark" rel="nofollow" target="_blank" title="Download Bulwark">Download Bulwark</a></span></b></div>Zion3R[email protected]
文章来源: http://www.blogger.com/feeds/8317222231133660547/posts/default/7471609354512730352
如有侵权请联系:admin#unsafe.sh