PatrOwl is an open-source, scalable Security Operations orchestration platform that centralizes asset management, risk review, and automated security workflows.
PatrOwl - Open Source, Smart and Scalable Security Operations Orchestration Platform
PatrOwlManager is used by security teams to orchestrate and automate security operations including vulnerability scanning, incident response, and risk management. It provides a centralized front-end to manage assets, run scans via distributed engines, aggregate results, and relay alerts to third-party platforms, making it ideal for SecOps teams seeking to streamline and scale their security workflows.
PatrOwl requires deploying both the PatrowlManager front-end and one or more PatrowlEngines for full functionality. Proper configuration of RabbitMQ and Celery is essential to support asynchronous task execution and scalability. Integration with third-party platforms enhances incident response capabilities. Being AGPL licensed, any modifications must also be shared under the same license.
Clone the repository from https://github.com/Patrowl/PatrowlManager
Follow the detailed Installation Guide at https://github.com/Patrowl/PatrowlDocs/blob/master/installation/installation-guide.md
Deploy PatrowlManager (Django-based front-end) on a server
Install and deploy one or multiple PatrowlEngines (Flask micro-applications) for scan execution
Configure RabbitMQ and Celery for asynchronous task handling
Access the PatrowlManager web interface or use its JSON-API for interaction
Refer to the User Guide at https://github.com/Patrowl/PatrowlDocs/blob/master/installation/user-guide.md for configuration and usageAccess PatrowlManager via embedded web interface
Use the web UI to manage assets, initiate scans, and review results
Use JSON-API calls to interact programmatically with PatrowlManager
Automate asset management, scan orchestration, and data retrieval
Deploy PatrowlEngines instances to perform scans
Run distributed scanning and analysis tasks triggered by PatrowlManager