Suche

Scaniacsod Site

Export – CSV, JSON, or PDF for compliance reporting.

# 1. Clone the repo
git clone https://github.com/scaniac/scaniac-sod.git
cd scaniac-sod
# 2. Copy example env & edit as needed
cp .env.example .env
nano .env   # <-- set DB passwords, API keys, etc.
# 3. Pull images & start
docker compose pull
docker compose up -d

The UI will be reachable at https://<host>:8443. Default admin credentials are admin / Scaniac2024! – change immediately. scaniacsod

| Feature | Description | How to Enable | |---------|-------------|---------------| | Passive Asset Discovery | Ingests NetFlow, sFlow, Zeek logs to discover hidden hosts. | sod-cli passive start | | Custom Enrichment Scripts | Python scripts that query internal APIs (e.g., AWS EC2 tags). | Place script in /opt/sod/enrich/ and reference in profile. | | Threat‑Intel Feed Aggregator | Pulls from NVD, OSINT, commercial APIs; auto‑maps to CVEs. | Set FEED_API_KEYS in .env. | | Container‑Aware Scanning | Scans Docker/K8s overlay networks via docker exec or kubectl exec. | Enable container_scanner: true in config.yaml. | | RBAC & SSO | LDAP, SAML, or OIDC integration for role‑based access. | Configure auth.provider in config.yaml. | | API‑First Automation | Full REST API (/api/v1/scans, /api/v1/assets). | Use generated token (sod-cli token create). | Export – CSV, JSON, or PDF for compliance reporting

# scaniac-sod-helm-values.yaml
replicaCount: 3
image:
  repository: scaniac/sod
  tag: latest
resources:
  limits:
    cpu: "4"
    memory: "8Gi"
  requests:
    cpu: "2"
    memory: "4Gi"
# Add your external secrets, ingress, persistence, etc.

helm repo add scaniac https://charts.scaniac.io
helm install scaniac-sod scaniac/sod -f scaniac-sod-helm-values.yaml

Tip: Use a separate namespace (e.g., sod-prod) and enable network policies to restrict scanner traffic. The UI will be reachable at https://&lt;host&gt;:8443