PatrOwl – Scalable Security Orchestration Platform

PatrOwl is an advanced platform for orchestrating Security Operations like Penetration testing, Vulnerability Assessment, Code review, Compliance checks, Cyber-Threat Intelligence / Hunting and SOC & DFIR Operations.

Fully-Developped in Python (Django for the backend and Flask for the engines). It remains easy to customize all components. Asynchronous tasks and engine scalability are supported by RabbitMQ and Celery.

PatrOwl - Scalable Security Orchestration Platform
PatrOwl – Scalable Security Orchestration Platform

Some of the use cases with this platform is:

  • Monitoring Internet-faced systems Scan continuously websites, public IP, domains and subdomains for vulnerabilities, misconfigurations.
  • Data leaks Monitor code leaks on GitHub, sharing platforms (Pasties), emails in dump leaks, open AWS buckets, …
  • Phishing / APT scenario preparation Monitor early signs of targeted attacks: new domain registration, suspicious Tweets, paste, VirusTotal submissions, phishing reports, …
  • Vulnerability and remediation tracking Identify vulnerabilities, send a full report to ticketing system (TheHive, JIRA, …) and rescan to check for remediation
  • Regulation and Compliance Evaluate compliance gaps using provided scan templates
  • Vulnerability assessment of internal systems Orchestrate regular scans on a fixed perimeter, check changes (asset, vulnerability, criticality)
  • Penetration tests Perform the reconnaissance steps, the full-stack vulnerability assessment and the remediation checks
  • Attacker assets monitoring Ensure readiness of teams by identifying attackers’ assets and tracking changes of their IP, domaines, WEB applications
  • Continuous Integration / Continuous Delivery Automation of static code analysis, external resources assessment and web application vulnerability scans

You can read more and download this tool over here:

Notify of
Inline Feedbacks
View all comments