paradrop is an open source, cybersecurity asset management tool that collects operating system information, including configurations, security settings, resource metrics, and installed and running software. The paradrop UI provides accessible, searchable, and filterable views on the data the paradrop agent collects from supported platforms. Our end goal is to build an easily customizable solution that provides methods to automate United States Government challenges around System Security Plans (SSP), Authorization to Operate (ATO), and Software Bill of Materials (SBOMs).
🐳 Docker Compose Method
First install NodeJS 18.x, Make, cURL and Docker
make local
# Optional: Load test / example demo data
make seed🖥️ Vagrant Method
vagrant upGo to https://localhost:8443/ui/
Main Docs: https://demo.paradrop.io/docs
Swagger API Docs: https://demo.paradrop.io/apidocs/
Elasticsearch compatible database also works
🔔 Requires cURL, Make and Docker
make elkPython Flask API
🔔 Requires Python >=3.10.
make apiBootstrap 5 & CoreUI Static HTML/CSS/JS
🔔 Requires Python 3.x or serve static assets from build UI directory.
make uiGolang Agent (Windows/Linux/Darwin/amd64/arm64 supported)
🔔 Requires Go >=1.22
cd agent
makeThe paradrop tool is early in development, and we're still building more documentation to help you deploy across different architectures, accelerate iterating on changes, and enhance security controls this year.
We hope you star this project, engage with us, and check back when you can for further updates coming soon.
paradrop is free and open source software licensed under
the GNU General Public License v3.0