Thirdeye tool is a security dashboard that integrates findings from multiple security tools to provide a unified view of all findings & tracking the findings.
-
Client: AdminLTE Theme and Javascript
-
Server: Django
Tools integrated:-
- Semgrep
- Gitleaks
- Amazon ECR (Scan)
- Nessus
- Nuclei
- Depandabot
- Cloud Custodian
Other Features:-
- AWS WAF (Summary)
- Permission of s3 Buckets
- Permission of Firebase URL
- Route53 public domains
- Block IP on WAF with time duration
- Rate-limit on endpoints based on custom HTTP header (like auth token)
- Main Dashboard for complete View
- Tool-Wise Dashboard which shows the Top 5 findings & Top 5 instance/repo.
- Gileaks Tool Result with feature to mark finding as False Positive and provide JIRA details.
- AWS Service s3 permissions page.
- Cloud Custodian Policy findings page.
- AWS WAF blocks IP addresses with a time duration feature.
-
Open Source the Code
-
JIRA integration for status
I'm from India. Love to create automation scripts in python.
If you have any feedback, please reach out to me at [email protected]