PurpleOps is super flexible, what would you like to configure?
Most options are in
flask.cfg. Custom knowledge bases / reports / testcase templates are done by dropping them in
NAME var in
.env. This affects the title shown in MFA apps.
MONGO_PORT vars in
.env. Unless you have a custom database, leave these as default.
Webserver Host / Port Bindings
PORT vars in
.env. If you're going to open the server to the internet, you'll probably want to change these.
- For enabling / disabling: Change the
.env. MFA is either on or off globally, no per-user config is available.
- For changing MFA validity: Change the
FLASK_DEBUG var in
.env. Don't enable this in prod :)
Mimimum Password Length
SECURITY_PASSWORD_LENGTH_MIN var in
See: User Management.
Custom Testcase Templates
Custom Knowledge Base Items
Using the schema from the sample
custom/knowledgebase/T1003.yaml file, any file in
custom/knowledgebase/*.yaml will overwrite the default Mitre writeup. Requires rerunning
seeder.py. See Custom Knowledge Base.
Drop your new Jinja
.docx file in
custom/reports/. See: Reporting.