Skip to content
/ ISAF Public

ISAF (إسعاف) - Integrated Security Assessments for your dev Flow

3 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

h-a-t-zz/ISAF

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

22 Commits
.gitignore
.gitignore
 
 
DevSecOps.png
DevSecOps.png
 
 
Flow.png
Flow.png
 
 
ISAF.ipynb
ISAF.ipynb
 
 
README.md
README.md
 
 
docker-compose.yml
docker-compose.yml
 
 
screen_webapp.png
screen_webapp.png
 
 

Repository files navigation

🚑 ISAF (إسعاف) 🚑

Integrated Security Assessments for your dev Flow

    EeeiiiiiEEiiiii.....                                             
       \|/                                                           
        n______     .....iiiiiEEiiiieeEE                             
       :~;     :                  \|/                                
-----;``~'  +  ;------------ ______n --------------------------------
     `-@-----@-=            :     :~:                                
=========================== ;  +  '~``; =============================
                            =-@-----@-'                              
jgs------------------------------------------------------------------

                   DEVSECOPS IN A PYTHON NUTSHELL

Purpose

This project is a "simple" python implementation of the DevSecOps Methodology, boiled down to the following picture: DevSecOps

and an implementation attempt:

Go with the Flow Morty!!

Stack Deployement

You can quickly start this PoC (based on OpenFaaS) on Docker Swarm online using the community-run Docker playground: play-with-docker.com (PWD) by clicking the button below:

Try in PWD

Or use the docker-compose.yml file.

Prerequisite

  • Get your Jupyter token:
$ docker service logs func_jupyter 2>&1 | grep token
func_jupyter.1.xam77gaqxi5s@node1    | [I 18:42:54.562 LabApp] The Jupyter Notebook is running at: http://[all ip addresses on your system]:8888/?token=5afdefee1c98acac0bbf29ae9972b7ccd23c50c115e74e49
func_jupyter.1.xam77gaqxi5s@node1    |     to login with a token:
func_jupyter.1.xam77gaqxi5s@node1    |         http://localhost:8888/?token=5afdefee1c98acac0bbf29ae9972b7ccd23c50c115e74e49
  • Install git, unzip, curl and faas-cli in the Jupyter container, and git clone this repo:
docker exec --user root -ti func_jupyter.1.shw9s15u6co3cuzp5sjft697t bash
root@b9300915e6ad:~# apt-get update && apt-get -y install unzip git curl
root@b9300915e6ad:~# curl -sSL https://cli.openfaas.com | sh # Not cool :/
root@b9300915e6ad:~# git clone https://github.com/h-a-t/ISAF
  • Change permissions of docker.sock for the sack of this PoC. ⚠️ Do not do this in a production environment 💣
chmod 777 /var/run/docker.sock
  • Upload ISAF.iynb to your Jupyter instance, and press play! \o/

PoC Stack built upon:

Name Link License
Clair https://github.com/coreos/clair Apache License 2.0
JupyterLab https://github.com/jupyterlab/jupyterlab BSD 3-Clause
Klar https://github.com/optiopay/klar MIT
Nmap https://github.com/nmap/nmap GNU General Public
OpenFaaS https://github.com/openfaas/faas MIT
Sonarqube https://github.com/SonarSource/sonarqube/ GNU Lesser General Public
WhatWeb https://github.com/urbanadventurer/WhatWeb GPLv2
WPScan https://github.com/wpscanteam/wpscan Dual-Licensed

About

ISAF (إسعاف) - Integrated Security Assessments for your dev Flow

Resources

Readme
Activity

Stars

3 stars

Watchers

3 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages