Architecture

flowchart LR

classDef black fill:black,stroke:#000,stroke-width:2px,color:#fff
classDef blue fill:#326da8,stroke:#000,stroke-width:2px,color:#fff
classDef blue-light fill:#329ea8,stroke:#000,stroke-width:2px,color:#fff
classDef green fill:#42a832,stroke:#000,stroke-width:2px,color:#fff
classDef red fill:#a83232,stroke:#000,stroke-width:2px,color:#fff

browsers[Browsers]:::black
cli[Rekono CLI]:::black
desktop[Rekono Desktop]:::blue-light
bot[Rekono Bot]:::blue

subgraph rekono[Rekono]
    nginx[Nginx]:::green
    backend[Backend]:::green
    frontend[Frontend]:::green
    
    subgraph queues[Redis Queues]
        redis[Redis]:::red
        tasksWorker[Tasks Worker]:::red
        executionsWorker[Executions Worker]:::red
        findingsWorker[Findings Worker]:::red
    end

    postgresql[(PostgreSQL)]:::blue
end

subgraph integrations[Integrations]
    nvdNist[NVD NIST]:::black
    defectDojo[Defect-Dojo]:::blue-light
end

bot-->backend
desktop & browsers & cli-->nginx
nginx-->frontend & backend
backend & queues-->postgresql
backend-->queues
redis-->tasksWorker & executionsWorker & findingsWorker
findingsWorker-->integrations

Loading

• Rekono Desktop
• Rekono Bot
• Rekono CLI
• Nginx: used in Docker environments as reverse proxy
• Backend: provides all Rekono services via API REST. See Configuration
• Frontend: provides Rekono web interface. See Configuration
• Tasks worker: receive and process tasks to be executed. Tasks can request the execution of one tool or set of tools named processes. See User Guide
• Executions worker: receive tool executions from tasks worker to be performed against one target. See User Guide
• Findings worker: receive and process execution results. User notifications and integrations with Defect-Dojo and NVD NIST are handled by this worker. See User Guide
• Integration with Defect-Dojo allow advanced vulnerability management
• NVD NIST API is used to get information about the CVE found