VulnArk is a modern vulnerability management platform designed to help security teams efficiently discover, track, and remediate security vulnerabilities across their organization. With powerful features like asset management, vulnerability tracking, knowledge base, and automated scanning, VulnArk provides a comprehensive solution for the entire vulnerability lifecycle management.
- Dashboard: Real-time overview of vulnerability statistics, trends, and recent activities
- Vulnerability Management: Create, update, track, and remediate vulnerabilities
- Asset Management: Manage and classify organizational assets with vulnerability mapping
- Knowledge Base: Document and share security best practices and remediation guides
- Vulnerability Database: Maintain a comprehensive database of known vulnerabilities
- Scan Integration: Schedule and manage automated vulnerability scans
- User Management: Role-based access control system
- Notification System: Customizable alerts for vulnerability events
- AI-powered Analysis: Risk assessment and prioritization with AI capabilities
- Frontend: Vue.js 3, Element Plus, ECharts
- Backend: Go (Gin framework)
- Database: MySQL 8.0
- Deployment: Docker & Docker Compose
- Clone the repository:
git clone https://github.com/yourusername/vulnark.git
cd vulnark- Run the deployment script:
chmod +x deploy.sh
./deploy.sh- Access the application:
- Frontend: http://localhost
- Default admin account:
- Username:
admin - Password:
admin123
- Username:
For manual deployment instructions, please refer to the Docker Deployment Guide.
VulnArk follows a microservices architecture with three main components:
- Frontend Service: Vue.js application served by Nginx
- Backend Service: Go API server providing business logic and data access
- Database Service: MySQL database for persistent storage
┌─────────────┐ ┌─────────────┐ ┌─────────────┐
│ │ │ │ │ │
│ Frontend │────▶│ Backend │────▶│ Database │
│ (Nginx) │ │ (Go API) │ │ (MySQL) │
│ │ │ │ │ │
└─────────────┘ └─────────────┘ └─────────────┘
Please add your application screenshots here
VulnArk can be configured through several methods:
- Environment Variables: Set in docker-compose.yml
- Config Files: Modify backend/config/config.yaml
- Database Settings: System settings stored in database
Key configuration options:
- Database connection settings
- JWT authentication settings
- Logging options
- Notification preferences
- AI service integration
For full configuration options, see the Configuration Documentation.
- Go 1.18+
- Node.js 16+
- MySQL 8.0+
- Backend Development:
cd backend
go mod download
go run main.go- Frontend Development:
cd frontend
npm install
npm run serveWe welcome contributions! Please follow these steps:
- Fork the repository
- Create a feature branch
- Commit your changes
- Push to your branch
- Create a Pull Request
Please make sure to follow our Code of Conduct and Contribution Guidelines.
This project is licensed under the MIT License - see the LICENSE file for details.
VulnArk 是一个现代化的漏洞管理平台,旨在帮助安全团队高效地发现、跟踪和修复组织内的安全漏洞。通过强大的功能,如资产管理、漏洞跟踪、知识库和自动扫描,VulnArk 为整个漏洞生命周期管理提供了全面的解决方案。
- 仪表盘:实时概览漏洞统计、趋势和最近活动
- 漏洞管理:创建、更新、跟踪和修复漏洞
- 资产管理:管理和分类组织资产,并映射相关漏洞
- 知识库:记录和分享安全最佳实践和修复指南
- 漏洞库:维护已知漏洞的综合数据库
- 扫描集成:调度和管理自动化漏洞扫描
- 用户管理:基于角色的访问控制系统
- 通知系统:可自定义的漏洞事件告警
- AI 驱动分析:利用 AI 能力进行风险评估和优先级划分
- 前端:Vue.js 3、Element Plus、ECharts
- 后端:Go(Gin 框架)
- 数据库:MySQL 8.0
- 部署:Docker 和 Docker Compose
- 克隆代码库:
git clone https://github.com/yourusername/vulnark.git
cd vulnark- 运行部署脚本:
chmod +x deploy.sh
./deploy.sh- 访问应用:
- 前端:http://localhost
- 默认管理员账号:
- 用户名:
admin - 密码:
admin123
- 用户名:
有关手动部署的说明,请参考 Docker 部署指南。
VulnArk 采用微服务架构,主要包含三个组件:
- 前端服务:由 Nginx 提供服务的 Vue.js 应用
- 后端服务:提供业务逻辑和数据访问的 Go API 服务器
- 数据库服务:用于持久化存储的 MySQL 数据库
┌─────────────┐ ┌─────────────┐ ┌─────────────┐
│ │ │ │ │ │
│ 前端 │────▶│ 后端 │────▶│ 数据库 │
│ (Nginx) │ │ (Go API) │ │ (MySQL) │
│ │ │ │ │ │
└─────────────┘ └─────────────┘ └─────────────┘
VulnArk 可以通过多种方式进行配置:
- 环境变量:在 docker-compose.yml 中设置
- 配置文件:修改 backend/config/config.yaml
- 数据库设置:存储在数据库中的系统设置
主要配置选项:
- 数据库连接设置
- JWT 认证设置
- 日志选项
- 通知首选项
- AI 服务集成
完整配置选项,请参见 配置文档。
- Go 1.18+
- Node.js 16+
- MySQL 8.0+
- 后端开发:
cd backend
go mod download
go run main.go- 前端开发:
cd frontend
npm install
npm run serve我们欢迎贡献!请遵循以下步骤:
- 复刻(Fork)代码库
- 创建功能分支
- 提交您的更改
- Push to your branch
- Create a Pull Request
该项目采用 MIT 许可证 - 详情请参见 LICENSE 文件。