Скачать или смотреть Probe: Plug and Play System Security Audit Tool

In this system, cybersecurity auditors will use a web interface written in MERN stack and hosted on AWS to log in using their credentials. From the dashboard, they can select the type of scan they want to perform, which will generate an OS-specific agent written in Golang. This agent will collect system information, like OS kernel info, network info, software info and so on, from the target system and send it to a shell script acting as a cloud receiver, running on an AWS EC2 instance, which uses Apache2. A vulnerability analyser coded in Golang and Python, set up in the cloud server, will process the received data to identify vulnerabilities, potential exploits, and ways to mitigate them. The processed data will be stored in a MongoDB database, while Firestore will be used for a tree-based hierarchical structure. A comprehensive report in PDF format will be generated, containing details on vulnerabilities found, suggested mitigations, and analytics. Users can download the report from the web interface. Additionally, the system can capture network traffic for a specified duration and send it to the cloud server as a pcap file for analysis.
The system requires network tools to be available on the subject machine. Root or Administrator access is required for some functionalities. APIs for vulnerability databases such as NVD and Searchsploit are also necessary.