WAM – Web App Monitor

WAM is a platform powered by Python to monitor “Web App“, “The dynamic network information”. To a certain extent, it greatly helps the security researchers save time on tracking the vulnerable code updates and industry dynamics of investment.

• AM Model: This module can monitor every update on all of the apps on the internet, analyzing the changes to make Tag and provide mail notification;
• IDM Model: This module uses a Web crawler to fetch the industry dynamic information and report that to users;
• VDR Model: This module manages all of the application packages in the history, and save the updated version of which DIFF details;

Development

• Lang: Python 2.7
• Framework: Django 1.7.11
• UI: Semantic-ui
• Database: Mysql

Models

• AM (App Monitoring)
• IDM (Information Dynamic Monitoring)
• VDR (The Relationship Between Vulnerability And Database)

App Monitoring

Information Dynamic Monitoring

The Relationship Between Vulnerability And Database

Use

Step 1. Get WAM source code

git clone https://github.com/knownsec/wam.git

Step 2. Update settings

update email server and user settings
TODO settings with database Storage

• monitor/utils/local_settings.py
• monitor/utils/email_list.py

Step 3. Deploy to server

• nginx
• uwsgi
• supervisor

Just use wam/conf config files to deploy your wam code

PS. WAM with LDAP auth

Essentially, need to ensure you have the necessary development libraries installed:

apt-get install libsasl2-dev python-dev libldap2-dev libssl-dev

then pip install python-ldap and uncomment wam/settings.py AUTHENTICATION_BACKENDS to

AUTHENTICATION_BACKENDS = (

    'wam.ldap_backend.LDAPBackend',

    'django.contrib.auth.backends.ModelBackend',

)

Copyright (c) 2018 Knownsec, Inc.

Source: https://github.com/knownsec/wam