-
Notifications
You must be signed in to change notification settings - Fork 5
TODO List
dav3r edited this page Sep 18, 2018
·
28 revisions
Set correct reply-to address for CyHy reportsSet up automated CyHy reports in AWSAutomate Nessus license key, user setup, policy deploymentSet up NVD sync scriptSet up cyhy-archive (weekly archive script) and decide where archived data should be sent toAdd CyHy backup and restore users to mongo_users.yml (S3 secret)Increase the ephemeral port range for the nmap boxes:cat /proc/sys/net/ipv4/ip_local_port_rangeSet up CyHy team members with CyHy tools that can access DB in AWSChange mongo instance from m4.2xlarge to m4.10xlarge (when limit is increased by AWS)- Update to licensed MaxMind GeoIP2 database (docker container and aws deployment)
Enable nmap instances to be destroyed/created without losing their current workEnable Nessus instances to be destroyed/created without losing their current work- Review all EC2 instances and volumes to determine if they should be resized
- Get CyHy dashboard up and running again
- Set up MongoDB replication
- Make commander more resilient- if any resource (database, scanner) is unavailable, gracefully wait until it becomes available; alert when a sane timeout has been reached
- Make all commander options (e.g. "IPS_PER_NETSCAN1_JOB") modifiable via config file
- Move all CyHy code to Python 3
- Add memory and disk usage monitoring and alerting (EC2 instances)
- Set up standby instances for CyHy in case we need to move to a different AWS availability zone
- Create a mechanism to watch for scans that have been in RUNNING status for "too long" and alert us
- Upgrade to newer version of MongoDB, running on newer version of Debian