Manage your CVEs seamlessly, Integrate your Vulnerability Scanners, Documentation made easy, Compliance to security Frameworks
Explore the docs »
Report Bug
·
Request Feature
Table of Contents
FlawFix is a vulnerability management that fits perfectly into any IT environment and ensures mitigation of vulnerabilities and complete documentation of the handling processes. It aims to be compliant to various security frameworks, like ISO 27001 or German BSI Grundschutz. With FlawFix you can easily go through the vulnerability management process:
- Consolidation of vulnerabilities
- Enhancing the data
- Risk Assessment
- Selection of the mitigation type
- Sharing of the vulnerability information to responsible parties
- Reporting
FlawFix is divided into two projects: A frontend (FlawFix Web) and a backend (FlawFix Backend).
Frontend (this project):
Backend:
To get a local copy up and running follow these simple example steps.
- Clone the repo
git clone https://github.com/l3montree-dev/flawfix-web.git
- Install NPM packages
npm install
- Start the development server
npm run dev
Please refer to the Documentation
- Consolidation of vulnerabilities
- Enhancing the data
- Risk Assessment
- Selection of the mitigation type
- Sharing of the vulnerability information to responsible parties
- Reporting
- Multi-language Support
- German
- English
See the open issues for a full list of proposed features (and known issues).
Please read our contribution guide if you would like to report a bug, ask a question, or help us with coding.
Help us keep FlawFix open and inclusive. Please read and follow our Code of Conduct.
Distributed under the AGPL-3.0-or-later License. See LICENSE.txt
for more information.