Sirius: Open-Source Vulnerability Scanner with Real-time Monitoring
Summary
Sirius is an open-source, comprehensive vulnerability scanner that integrates community-driven security intelligence and automated penetration testing. Its latest v0.4.0 release introduces robust system monitoring and observability features, enhancing its capabilities. The platform offers a user-friendly interface and a quick Docker-based setup, making it accessible for security professionals.
Repository Info
Tags
Click on any tag to explore related repositories
Introduction
Sirius is an open-source, comprehensive vulnerability scanner designed to empower security professionals with advanced penetration testing capabilities. It leverages community-driven security intelligence to provide robust vulnerability detection and risk management. The latest v0.4.0 release significantly enhances its capabilities by introducing comprehensive system monitoring and observability features, alongside improved reliability and production-ready Docker configurations. Get started quickly with its straightforward Docker-based setup.
Installation
Getting Sirius up and running is designed to be simple and fast, primarily using Docker Compose.
Prerequisites
- Docker Engine: Version 20.10.0+ with Docker Compose V2.
- System Requirements: Minimum 4GB RAM, 10GB free disk space.
- Network Access: Internet connectivity for vulnerability database updates.
- Supported Platforms: Linux, macOS, Windows (with WSL2).
One-Command Setup
Clone the repository and start Sirius using Docker Compose. This uses prebuilt images for a quick deployment.
git clone https://github.com/SiriusScan/Sirius.git
cd Sirius
docker compose up -d
Once started, access the web interface by opening http://localhost:3000 in your browser. Default login credentials are admin / password, which should be changed immediately in production environments.
Examples
Sirius offers a wide array of features for comprehensive security assessments.
Core Capabilities
- Network Discovery: Automated host discovery and service enumeration.
- Vulnerability Assessment: CVE-based vulnerability detection with CVSS scoring.
- Risk Management: Comprehensive risk scoring and remediation guidance.
- Automated Scanning: Scheduled and continuous security assessments.
- Real-time Dashboards: Live scanning progress and vulnerability metrics.
Supported Scan Types
- Network Scanning (Nmap-based)
- Vulnerability Scanning (NSE script-based)
- SMB/Windows Assessment
- Custom Workflows
- Agent-based Scanning
API Integration Example
Sirius provides a robust REST API for integration into existing security workflows. Here's how to initiate a network scan via the API:
curl -X POST http://localhost:9001/api/scans \
-H "Authorization: Bearer $TOKEN" \
-H "Content-Type: application/json" \
-d '{"target": "192.168.1.0/24", "scan_type": "network"}'
Why Use Sirius
Sirius stands out as a powerful tool for several reasons:
- Comprehensive Security: Offers end-to-end vulnerability scanning, from network discovery to detailed risk assessment and remediation guidance.
- Real-time Insights: Provides live dashboards, system monitoring, and centralized logging for immediate visibility into security posture and system health.
- Ease of Deployment: With its Docker-based setup, you can get a full scanning environment running in minutes.
- Scalable Architecture: Built on a microservices architecture (Go, Next.js, PostgreSQL), it's designed for performance and scalability across various environments.
- Extensible and Integrable: Features a comprehensive REST and WebSocket API, allowing seamless integration with other security tools and custom workflows.
- Community-Driven: Benefits from community intelligence, ensuring up-to-date vulnerability databases and evolving capabilities.
Links
- Official GitHub Repository: SiriusScan/Sirius
- Quick Start Guide: Get started in 5 minutes
- Detailed Installation Guide: Comprehensive setup instructions
- Join the Community: Discord Community
- Report Issues: GitHub Issues