Eagle Eyes

Eagle Eyes is a vulnerability scanner that scans the servers agents set up on them to find vulnerabilities in the installed packages. The master server is responsible for managing the agents and the agents are responsible for scanning the servers and sending the results to the master server. The master server can notify you using a telegram bot.

Setup

requirements (master)

• Ubuntu 22.04/Debian 12
• minimum 6GB RAM
• minimum 4 CPU cores
• minimum 10GB RAM+SWAP

requirements (agent)

• Ubuntu 22.04/Debian 12
• minimum 1GB RAM
• minimum 1 CPU cores

Installation

I suggest installing Elixir using asdf version manager. please follow the instructions here. then use make to install the dependencies and compile the project.

git clone git@github.com:mm3906078/eagle-eyes.git
cd eagle-eyes
make compile
make release_master
make release_agent

the agent and master releases will be in _build/prod/agent-<VERSION>.tar.gz and _build/prod/master-<VERSION>.tar.gz respectively.

Production Notices

• for finding CPEs we use cpe-guesser.cve-search.org API, but in the production environment, you should use their code in the self-hosted environment. Please check the cve-search repository for more information.

Feature List

• Master load for finding CVEs can be distributed to agents.
• Support for Windows agents.
• Support for MacOS agents.
• Support for Linux older than Ubuntu 22.04/Debian 12.
• Rewrite the version_control.ex module for installing large packages.
• Unit tests for the vagent application.
• Unit tests for the vcentral application.

Development

Run the debugging shell using these commands.

export $(xargs < .env)
iex --name vagent@192.168.1.10 -S mix run --no-start scripts/start-agent.exs
iex --name vcentral@192.168.1.10 -S mix run --no-start scripts/start-master.exs

if you getting an error of Protocol 'inet_tcp': register/listen error: econnrefused try to run epmd -daemon and then run the above commands.