VulnerabiliTea is a Free and Open-Source security vulnerability management webapp for penetration testers.
Manage all your security vulnerability discoveries in one place
- A vast choice of fields, HTML descriptions
- Attachments
- Public and private discovery publishing
- Editing after publishing
- Activity feed with vote system for public discoveries (WIP)
- Token-generation based share center for private discoveries
- User profiles
- Node.JS
- NPM
- MongoDB
Use the following command to install the package dependencies
npm i
Now you have two ways to deploy the webapp:
-
Editing
config.jsonmanually and starting the webapp withnode app.js -
Using environment variables
If you are using this method you will be required to set thePORTandMONGODB_URIenvironment variables before starting. This can be done like so:/* Linux */ MONGODB_URI="mongodb://localhost/VulnerabiliTea" PORT=8080 node app.js /* Windows (Powershell) */ $env:MONGODB_URI = "mongodb://localhost/VulnerabiliTea" $env:PORT = 8081 node app.js
If you want HTTPS you must also set the
ACME_URIandACME_SERVEenvironment variables
Pull requests are welcome. For major changes, please open an issue first to discuss what you would like to change.