Home

Awesome

----DEPRECATED/LOOKING FOR MAINTAINERS----

August 20th, 2018

We're starting to change directions with our security automation approach and are actively looking for a maintainer for the Scumblr project. We're going to leave Scumblr code online but are not planning on adding any new features or addressing open issues and pull requests. If you are interested in maintaining this project, please reach out to me (sbehrens@netflix.com).

-Scott

Scumblr

Scumblr

Join the chat at https://gitter.im/Netflix/Scumblr

What is Scumblr 2?

Scumblr is a web application that allows performing periodic syncs of data sources (such as Github repositories and URLs) and performing analysis (such as static analysis, dynamic checks, and metadata collection) on the identified results. Scumblr helps you streamline proactive security through an intelligent automation framework to help you identify, track, and resolve security issues faster.

Scumblr ships with a number of tasks to help you streamline security automation including:

Sync Tasks

Security Tasks

Search Tasks (legacy)

Scumblr also provides a number of novel features that streamline security automation including:

Scumblr uses the Workflowable gem to allow setting up flexible workflows for different types of results.

How do I use Scumblr?

Scumblr is a web application based on Ruby on Rails. In order to get started, you'll need to setup / deploy a Scumblr environment and configure it to search and analyze the things you care about. Setup information is described in great detail on the Wiki.

You'll optionally want to setup and configure workflows so that you can track the status of identified results through your triage process.

What can Scumblr look for and analyze?

Just about anything! Scumblr searches utilize plugins called Tasks. Each Task knows how to perform a search or sync via a certain site or API (Github, Route53, Google, Pastebin, Twitter, etc.). Tasks can be configured from within Scumblr based on the options available by the Task. What are some things you might want to look for or analyze? How about:

These are just a few examples of things that you may want to keep an eye on!

Scumblr found stuff, now what?

Scumblr provides a handy vulnerability object you can use to monitor a particular result security issues. You can also create Status fields to associate with results, allowing you to track the state of a result or it's remediation over time.

You can create simple or complex workflows to be used along with your results. This can be as simple as marking results as "Reviewed" once they've been looked at, or much more complex involving multiple steps with automated actions occurring during the process.

Sounds great! How do I get started?

Take a look at the wiki for detailed instructions on setup, configuration, and use!

Release History

Version 2.1 - "Reliablity, Useability and Performace Edition" - September 26th, 2017

Significant changes include: -Major performance improvements to async tasks -Ability to utilize an external redis instance -Ability to route tasks to specific queues -Ability to schedule individual tasks separately within the application -Added concept of 'on-demand' and 'callback' tasks -Improved vulnerability handling -Bug fixes -Improved test coverage and integration with TravisCI

Version 2.0.2 - "XSS fix" - November 30th, 2016

This fixes a XSS issue on the main Tasks page reported by Michael Carlson. The XSS vulnerability is only exploitable by administrator users of the application.

Version 2.0.1a - "System Metadata" - November 15th, 2016

This is a minor release that adds some new functioanlity:

Version 2.0.1 - "O'Reilly Security Edition" - November 2nd, 2016

This is a minor release that addresses a few bugs and adds some new features. Note: if upgrading from 2.0 make sure to run bundle install and restart your server.

Version 2.0 - "Dirty Laundry" - October 12th, 2016

This is a major release that addresses a number of bugs and adds many new features

Version 1.0 - "Initial Release" - August 21st, 2014

Contributing

Pull requests welcome! See the Contributing doc for details.