verinice is a tool for managing information security.
Java HTML XSLT JavaScript CSS Perl Other
Latest commit 8f5cfe4 Feb 17, 2017 @murygin murygin Merge pull request #213 in ISMS/verinice from feature/vn-1680-revisio…
…n-of-texts-for-bsi-standard-100-4 to develop

* commit 'd90e62feefecacf9fa6f1236ed013b7e785ac182':
  Escape non-Latin-1 chars in German SNCA properties
  Revise German texts for BSI standard 100-4
  Remove trailing white spaces
  Add tag for BSI 100-4 to SNCA
  Revise English texts for BSI standard 100-4
  Remove trailing white spaces
Permalink
Failed to load latest commit information.
Verinice-Update-Site Remove every occurence of mysql in verinice files Jun 15, 2016
sernet.gs.db.fragment Remove all mysql files from git repo Jun 15, 2016
sernet.gs.ehcache.fragment Modify project files to support SonarLint 2 Apr 18, 2016
sernet.gs.hibernate.fragment Modify project files to support SonarLint 2 Apr 18, 2016
sernet.gs.log4j.fragment Modify project files to support SonarLint 2 Apr 18, 2016
sernet.gs.pax_web.fragment Modify project files to support SonarLint 2 Apr 18, 2016
sernet.gs.reveng fix setting of id of user defined threats on gstool-import Apr 28, 2016
sernet.gs.server.feature fix broken and outdated links Aug 17, 2016
sernet.gs.server Escape non-Latin-1 chars in German SNCA properties Feb 14, 2017
sernet.gs.service Add risk treatment option "Transfer" Dec 13, 2016
sernet.gs.springweb.fragment Modify project files to support SonarLint 2 Apr 18, 2016
sernet.gs.ui.rcp.main.feature Set verinice version to 1.13.1. Dec 1, 2016
sernet.gs.ui.rcp.main Prevent update dialog loading in server mode Dec 12, 2016
sernet.hui.common Merge remote-tracking branch 'origin/feature/VN-1588-News-dialog-to-i… Dec 12, 2016
sernet.hui.server Modify project files to support SonarLint 2 Apr 18, 2016
sernet.hui.swtclient Refactor Nov 17, 2016
sernet.springclient Merge remote-tracking branch 'origin/feature/VN-1588-News-dialog-to-i… Dec 12, 2016
sernet.verinice.encryption Modify project files to support SonarLint 2 Apr 18, 2016
sernet.verinice.fei.rcp consider attachments on element copy May 10, 2016
sernet.verinice.fei.service Modify project files to support SonarLint 2 Apr 18, 2016
sernet.verinice.kerberos Modify project files to support SonarLint 2 Apr 18, 2016
sernet.verinice.oda.driver.designer REmove version number from sernet bundle of designer GUI Dec 2, 2016
sernet.verinice.oda.driver Fix typo which was caused by fixing typos. Nov 17, 2016
sernet.verinice.p2 Modify project files to support SonarLint 2 Apr 18, 2016
sernet.verinice.report.designer.target Modify project files to support SonarLint 2 Apr 18, 2016
sernet.verinice.report.designer.tycho Add reference to included jre to fix missing references on macOS build Dec 14, 2016
sernet.verinice.report.service Prevent update dialog loading in server mode Dec 12, 2016
sernet.verinice.samt.rcp add missing "http://" in front of links, code-review issue Aug 23, 2016
sernet.verinice.samt.service fix broken and outdated links Aug 17, 2016
sernet.verinice.tycho.parent Modify project files to support SonarLint 2 Apr 18, 2016
target-platform Fix the launcher for vdesigner Aug 30, 2016
update-site Remove every occurence of mysql in verinice files Jun 15, 2016
verinice-tp-eclipse-3.7 Managed empty-folder-gitignores Dec 1, 2015
.gitignore Change description of the exclude of B1.5-Datenschutz-2008-08-26.zip. Dec 3, 2015
CODINGSTYLE.md Use uppercase for all project description file names. Jan 15, 2016
COPYRIGHT.md Use uppercase for all project description file names. Jan 15, 2016
LICENSE Put license text into root directory. Jan 15, 2016
README.md Use uppercase for all project description file names. Jan 15, 2016

README.md

verinice

verinice helps you to build and operate your management system for information security (ISMS). Whether you base it on ISO 27001, BSI IT Baseline Protection, IDW PS 330 or another standard: verinice supports you in your daily work as a CISO or IT Security Officer.

All relevant standards are either already integrated in the tool or can be easily imported. All data is stored in an object model that is tailored to the requirements of information security and is dynamically expandable. This makes your data the basis for a sustainable IS process.

Eclipse Rich Client Platform

verinice is a Java application. The graphical surface is implemented with the Rich Client Platform (RCP). This makes verinice platform independent while using the native GUI elements of the operating system.

Also part of the Eclipse platform is the BIRT Report Designer. All verinice reports can be customized – and you’re able to design completely new reports which can be exported as PDF, HTML or Excel (CSV) file.

Dynamic Object Model (HitroUI)

The HitroUI Framework is a part of verinice. A simple XML-file defines all fields and field types which appear in the application. So the database data and all displayed forms are generated dynamically.

This dynamic object model allows you to define additional data fields for specific objects as needed or to remove unneeded fields from the standard forms. That is how you can adapt verinice to your working methods and the requirements of your organization.

Databases

By using the object-relational mapper Hibernate, verinice is able to connect with different database systems. The supported database systems are:

  • PostgreSQL
  • Apache Derby
  • Oracle DB

Three-Tier Architecture

verinice uses a three-tier architecture where independent software modules are implemented. A centralized database and an application server provide data to the client.

The verinice.PRO application server complements the pure client with a centralized IS repository hosted in your company. It enables multiple people to work on one ISMS - even across different locations.

Contributing to verinice via GitHub

  • fork our repository on GitHub

  • become familiar with our coding standards and read verinice coding style

  • send a pull request for your branch through GitHub

  • this will trigger an email to the verinice developer mailing list

  • discussion happens on your pull request on github

  • after your pull request is approved, we pull the branch in our internal repository, do the merge there and push it back to the GitHub mirror