A secure, collaborative logging system designed for red team operations and security assessments. This application provides real-time logging capabilities with features like row locking, user authentication, and audit trails.
- Real-time Collaborative Logging: Multiple users can view and edit logs simultaneously
- Row-Level Locking: Prevent conflicts with row-level locking mechanism
- Role-Based Access Control: Admin and user roles with different permissions
- Secure Authentication: CSRF protection, secure session management, and password policies
- Relationship Analysis: Visualize connections between hosts, IPs, domains, and user commands
- File Status Tracking: Monitor file status across systems (ON_DISK, IN_MEMORY, ENCRYPTED, etc.)
- API Integration: Programmatic access for automated log submission and integration with external tools
- Evidence Management: Upload and track evidence files associated with logs
- Docker and Docker Compose
- Node.js 18 or higher (for setup scripts)
- npm (Node Package Manager)
-
Clone the repository:
git clone https://github.com/seahop/Clio.git cd Clio ./setup.sh -
Generate environment variables and security keys:
# Create and activate a virtual environment python -m venv venv source venv/bin/activate # On Windows: venv\Scripts\activate # Install required packages pip install -r requirements.txt # Generate certs and env sudo python generate-env.py https://yourIPorHost
or for production style
sudo python3 generate-env.py https://yourdomain.com --letsencrypt --domain=yourdomain.com --email=your@email.com --google-client-id=123456.your.client.id --google-client-secret=YOUR-SECRET --google-callback-url=https://yourdomain.com/api/auth/google/callback
-
Build and start the containers:
docker compose build docker compose up
-
Access the application at:
- https://localhost (or your custom domain/IP)
The default admin and user passwords will be displayed in the console output and saved in a credentials backup file.