Need help with PatrowlEngines?
Click the “chat” button below for chat support from the developer who created it, or find similar developers for support.

About the developer

178 Stars 56 Forks GNU Affero General Public License v3.0 837 Commits 15 Opened issues


PatrOwl - Open Source, Free and Scalable Security Operations Orchestration Platform

Services available


Need anything else?

Contributors list

Join the chat at Build Status Codacy Badge


PatrOwl is a scalable, free and open-source solution for orchestrating Security Operations.

PatrowlEngines is the engine framework and the supported list of engines performing the operations (scans, searches, API calls, ...) on due time. The engines are managed by one or several instance of PatrowlManager.


Technical Overview

Installation and deployment

See the Installation guide


See the User guide


PatrOwl is an open source and free software released under the AGPL (Affero General Public License). We are committed to ensure that PatrOwl will remain a free and open source project on the long-run.


Information, news and updates are regularly posted on Twitter account and on the blog.


Please see our Code of conduct. We welcome your contributions. Please feel free to fork the code, play with it, make some patches and send us pull requests via issues.


Please open an issue on GitHub if you'd like to report a bug or request a feature. We are also available on Gitter to help you out.

If you need to contact the project team, send an email to [email protected].


  • [ ] WhatWeb
  • [ ] CLAIR (Container Security)
  • [ ] AquaSecurity
  • [ ]
  • [ ] Acunetix
  • [ ] Qualys
  • [ ] CyberWatch

Awesome engines from Community

  • PingCastle by @vletoux (see

Pro Edition and SaaS

A commercial Pro Edition is available and officially supported by the PatrOwl company. It includes following extra and awesome engines: - [x] ZAP (Web scanner) - [x] Nikto (Web scanner) - [x] Microsoft Cloud App Security (CASB alerts) - [x] CloudSploit (Cloud security assessment for AWS, GCP and Azure) - [x] SonarQube (Code quality and security) - [x] Checkmarx (Code quality and security) - [x] TFSec (Terraform security) - [x] Nuclei (Vulnerability scanner) - [x] Git-leaks (Secret leaks finder in GIT repositories)

This version is also available on the official SaaS platform. See:

Commercial Services

Looking for advanced support, training, integration, custom developments, dual-licensing ? Contact us at [email protected]

Security contact

Please disclose any security-related issues or vulnerabilities by emailing [email protected], instead of using the public issue tracker.


Copyright (C) 2018-2021 Nicolas MATTIOCCO (@MaKyOtOx - [email protected])

Travis (CI) build status

| Branch | Status | |---|---| | master | Build Status | | develop | Build Status |

Snyk (Vulnerabilities) status

| Engine | Status | |---|---| | arachni | Known Vulnerabilities | | cortex | Known Vulnerabilities | | nessus | Known Vulnerabilities | | nmap | Known Vulnerabilities | | openvas | Known Vulnerabilities | | owlcode | [Known Vulnerabilities]( | | owldns | [Known Vulnerabilities]( | | owlleaks | [Known Vulnerabilities]( | | ssllabs | Known Vulnerabilities | | urlvoid | Known Vulnerabilities | | virustotal | Known Vulnerabilities | | wpscan | Known Vulnerabilities | | cybelangel | Known Vulnerabilities | | shhgit | Known Vulnerabilities |

We use cookies. If you continue to browse the site, you agree to the use of cookies. For more information on our use of cookies please see our Privacy Policy.