CervantesSec / cervantes

Cervantes is an open-source, collaborative platform designed specifically for pentesters and red teams. It serves as a comprehensive management tool, streamlining the organization of projects, clients, vulnerabilities, and reports in a single, centralized location.
https://www.cervantessec.org/
Apache License 2.0
285 stars 43 forks source link
audit burpsuite collaboration collaboration-platform collaborative cve hacking nessus nmap penetration-testing penetration-testing-tools pentesters pentesting red-team red-teaming report reporting security vulnerability vulnerability-management

Cervantes logo

GITHUB TWITTER WEB DISCORD DOCS

Cervantes is an open-source, collaborative platform designed specifically for pentesters and red teams. It serves as a comprehensive management tool, streamlining the organization of projects, clients, vulnerabilities, and reports in a single, centralized location.

By facilitating efficient data management and providing a unified workspace, Cervantes aims to significantly reduce the time and effort required in the coordination and execution of penetration testing activities.

Supported

Cervantes is an OWASP Foundation Project

Technologies

DOTNET CSHARP RIDER JS HTML CSS

Features

Runtime requirements

How to run it locally with Docker compose

git clone https://github.com/CervantesSec/docker.git
docker-compose -p cervantes -f docker-compose.yml up -d

Default User and Password

When you first launch the Cervantes application, a default user is created for you. The default username is admin@cervantes.local.

The password for this user is generated randomly during the creation of the application container and the first launch of the application. This means that the password is unique for each instance of the application and provides an additional layer of security.

Please note that it's important to change the default password as soon as possible to ensure the security of your application. You can do this by logging in with the default user and navigating to the user settings page.

Remember, the security of your application is paramount. Always use strong, unique passwords and change them regularly.

How to run it locally from source

Requirements

How to run it locally

To install the Cervantes application from the source code, you can follow these steps:

git clone https://github.com/CervantesSec/cervantes.git
cd Cervantes

Database Connection String The database connection string is used to connect your application to your database. It usually includes the server name, database name, and authentication details. Here's an example of how it might look in your appsettings.json:

{
  "ConnectionStrings": {
    "DefaultConnection": "Server=myServerAddress;Database=myDataBase;Username=myUsername;Password=myPassword"
  },
}

Replace myServerAddress, myDataBase, myUsername, and myPassword with your actual database details.

dotnet restore
dotnet build
dotnet run --project Cervantes.Web/Cervantes.Web.csproj

The application should now be running at http://localhost:5000.

Please note that this is a basic installation guide and the actual process might vary depending on the project's specific configuration and requirements. For example, if the project uses a database, you might need to set up the database and update the connection string in the configuration file.

How to contribute

Here are some things you could do to become a contributor:

Before you jump to make any changes make sure you have read the contributing guidelines. This would save us all time. Thanks!

paypal

Security

Please report Security issues via our disclosure policy.

How to report bugs

If you have bugs to report please use the issues tab on Github to submit the details.