reddit hackernews mail facebook facebook linkedin


Truly open-source general purpose vulnerability scanner.

Today, the information security community remains the best and most expedient source for cybersecurity intelligence. The community itself regularly outperforms commercial vendors. This is the primary advantage Sirius Scan intends to leverage.

The framework is built around four general vulnerability identification concepts: The vulnerability database, network vulnerability scanning, agent-based discovery, and custom assessor analysis. With these powers combined around an easy to use interface Sirius hopes to enable industry evolution.

The system is composed of the following services:
- Mongo: a NoSQL database used to store data.
- RabbitMQ: a message broker used to manage communication between services.
- Sirius API: the API service which provides access to the data stored in Mongo.
- Sirius Web: the web UI which allows users to view and manage their data pipelines.
- Sirius Engine: the engine service which manages the execution of data pipelines.