From 2815930e3b5e60ec37700003e1cae25ad0c194c3 Mon Sep 17 00:00:00 2001 From: MaKyOtOx Date: Wed, 13 Jul 2022 10:13:57 +0200 Subject: [PATCH] update readme and authors --- AUTHORS | 3 ++- README.md | 33 +++++---------------------------- SECURITY.md | 4 ++-- 3 files changed, 9 insertions(+), 31 deletions(-) diff --git a/AUTHORS b/AUTHORS index 01d772b1..773084b6 100644 --- a/AUTHORS +++ b/AUTHORS @@ -1,9 +1,10 @@ Authors ------- * Nicolas Mattiocco - Patrowl (@MaKyOtOx - nicolas@patrowl.io) +* Patrowl SAS Crontributors ------- * CERT Banque de France (CERT-BDF) -Copyright (C) 2018-2021 Nicolas MATTIOCCO +Copyright (C) 2018-2022 Nicolas MATTIOCCO diff --git a/README.md b/README.md index 1fd27b12..e5177a3e 100644 --- a/README.md +++ b/README.md @@ -6,7 +6,7 @@ [![Codacy Badge](https://api.codacy.com/project/badge/Grade/dd892594b17c4b6db850ed519a1596c1)](https://www.codacy.com/app/MaKyOtOx/PatrowlEngines) # **PatrOwl** -[PatrOwl](https://www.patrowl.io/) is a scalable, free and open-source solution for orchestrating Security Operations. +[PatrOwl](https://www.patrowl.io/) identifies and helps to harden your External Security Posture. Let us manage time-consuming tasks to let your teams focus on remediation. External Attack Surface Management (EASM) + Pentest-as-a-Service (PtaaS) **PatrowlEngines** is the engine framework and the supported list of engines performing the operations (scans, searches, API calls, ...) on due time. The engines are managed by one or several instance of [PatrowlManager](https://github.com/Patrowl/PatrowlManager/). @@ -20,10 +20,10 @@ See the [Installation guide](https://github.com/Patrowl/PatrowlDocs/blob/master/ See the [User guide](https://github.com/Patrowl/PatrowlDocs/blob/master/installation/user-guide.md) # License -PatrOwl is an open source and free software released under the [AGPL](https://github.com/Patrowl/PatrowlEngines/blob/master/LICENSE) (Affero General Public License). We are committed to ensure that PatrOwl will remain a free and open source project on the long-run. +PatrowlEngines is an open source and free software released under the [AGPL](https://github.com/Patrowl/PatrowlEngines/blob/master/LICENSE) (Affero General Public License). We are committed to ensure that PatrowlEngines will remain a free and open source project on the long-run. # Updates -Information, news and updates are regularly posted on [Patrowl.io Twitter account](https://twitter.com/patrowl_io) and on [the blog](https://blog.patrowl.io/). +Information, news and updates are regularly posted on [Patrowl.io Twitter account](https://twitter.com/patrowl_io) and on [the blog](https://blog.patrowl.io/). # Contributing Please see our [Code of conduct](https://github.com/Patrowl/PatrowlDocs/blob/master/support/code_of_conduct.md). We welcome your contributions. Please feel free to fork the code, play with it, make some patches and send us pull requests via [issues](https://github.com/Patrowl/PatrowlEngines/issues). @@ -33,33 +33,9 @@ Please [open an issue on GitHub](https://github.com/Patrowl/PatrowlEngines/issue If you need to contact the project team, send an email to . -# Roadmap -- [ ] WhatWeb -- [ ] CLAIR (Container Security) -- [ ] AquaSecurity -- [ ] Tenable.io -- [ ] Acunetix -- [ ] Qualys -- [ ] CyberWatch - # Awesome engines from Community - [PingCastle](https://github.com/vletoux/PingCastlePatrOwl) by @vletoux (see https://www.pingcastle.com/) -# Pro Edition and SaaS -A commercial Pro Edition is available and officially supported by the PatrOwl company. It includes following extra and awesome engines: -- [x] ZAP (Web scanner) -- [x] Nikto (Web scanner) -- [x] Microsoft Cloud App Security (CASB alerts) -- [x] CloudSploit (Cloud security assessment for AWS, GCP and Azure) -- [x] SonarQube (Code quality and security) -- [x] Checkmarx (Code quality and security) -- [x] TFSec (Terraform security) -- [x] Nuclei (Vulnerability scanner) -- [x] Git-leaks (Secret leaks finder in GIT repositories) - -This version is also available on the official SaaS platform. -See: https://patrowl.io/get-started - # Commercial Services Looking for advanced support, training, integration, custom developments, dual-licensing ? Contact us at getsupport@patrowl.io @@ -67,7 +43,7 @@ Looking for advanced support, training, integration, custom developments, dual-l Please disclose any security-related issues or vulnerabilities by emailing security@patrowl.io, instead of using the public issue tracker. # Copyright -Copyright (C) 2018-2021 Nicolas MATTIOCCO ([@MaKyOtOx](https://twitter.com/MaKyOtOx) - nicolas@patrowl.io) +Copyright (C) 2018-2022 Nicolas MATTIOCCO ([@MaKyOtOx](https://twitter.com/MaKyOtOx) - nicolas@patrowl.io) # Travis (CI) build status | Branch | Status | @@ -78,6 +54,7 @@ Copyright (C) 2018-2021 Nicolas MATTIOCCO ([@MaKyOtOx](https://twitter.com/MaKyO # Snyk (Vulnerabilities) status | Engine | Status | |---|---| +| apivoid | [![Known Vulnerabilities](https://snyk.io/test/github/Patrowl/PatrowlEngines/badge.svg?targetFile=engines%2Fapivoid%2Frequirements.txt)](https://snyk.io/test/github/Patrowl/PatrowlEngines?targetFile=engines%2Farachni%2Frequirements.txt) | | arachni | [![Known Vulnerabilities](https://snyk.io/test/github/Patrowl/PatrowlEngines/badge.svg?targetFile=engines%2Farachni%2Frequirements.txt)](https://snyk.io/test/github/Patrowl/PatrowlEngines?targetFile=engines%2Farachni%2Frequirements.txt) | | cortex | [![Known Vulnerabilities](https://snyk.io/test/github/Patrowl/PatrowlEngines/badge.svg?targetFile=engines%2Fcortex%2Frequirements.txt)](https://snyk.io/test/github/Patrowl/PatrowlEngines?targetFile=engines%2Fcortex%2Frequirements.txt) | | nessus | [![Known Vulnerabilities](https://snyk.io/test/github/Patrowl/PatrowlEngines/badge.svg?targetFile=engines%2Fnessus%2Frequirements.txt)](https://snyk.io/test/github/Patrowl/PatrowlEngines?targetFile=engines%2Fnessus%2Frequirements.txt) | diff --git a/SECURITY.md b/SECURITY.md index 76a60679..1db80c3c 100644 --- a/SECURITY.md +++ b/SECURITY.md @@ -1,6 +1,6 @@ - [Security Policy](#security-policy) - - [Supported Versions](#supported-versions) - - [Reporting a Vulnerability](#reporting-a-vulnerability) +- [Supported Versions](#supported-versions) +- [Reporting a Vulnerability](#reporting-a-vulnerability) # Security Policy