ive been working on a side project called hecate (foss) and looking for some people to give it a try and give some feedback.
its basically a local vuln db + SCA tool aimed at sec admins and devs:
- vuln info collection + api access
- SCA scans for repos and containers
- AI part is fully opt-in/out (so nothing touches ai if you dont want it)
its based on a prototype i built for my research thesis so still some rough edges… but the core works.
demo: https://hecate.pw/ -> system page & AI pages are locked on the demo site
selfhost: https://github.com/0x3e4/hecate
any feedback is welcome… especially from people doing vuln mgmt, container scanning or dependency review day to day… thanks in advance!
This looks very good! I’ll definitely try it. Do you plan to maintain, extend it?
thanks and yes definitely… not so sure about the tempo but i already work with hecate at my company (automate vuln info, SCA for repo scans,…)
It’s cool, just wish you could query strings and or regex.
noted! regex will be included in future releases because its actually another good alternative… thanks! regarding query strings -> already works with dql
Hello there
I will look into that thanks for this projet
