Skip to content
Kurt Grutzmacher edited this page Sep 23, 2013 · 18 revisions

Welcome to Kvasir!

Kvasir is a vulnerability / penetration testing data management system designed to help mitigate the issues found when performing team-based assessments. Kvasir does this by homogenizing data sources into a pre-defined structure. Currently the following sources are supported:

  • Rapid 7 NeXpose
  • Metasploit / Metasploit Pro
  • ShodanHQ
  • Nmap
  • THC-Hydra
  • Medusa
  • John The Ripper

In-progress

  • Tennable Nessus
  • QualysGuard

What About Web Applications?

Our thought is that Kvasir is to remain focused on network/host-based assessment tools and not applications. This may be addressed in a future release.

Installation

See the installation wiki for instructions.

License

Kvasir is released under the 3-clause BSD license.

Clone this wiki locally