Cervantes is an open-source, collaborative platform designed specifically for pentesters and red teams. It serves as a comprehensive management tool, streamlining the organization of projects, clients, vulnerabilities, and reports in a single, centralized location.
By facilitating efficient data management and providing a unified workspace, Cervantes aims to significantly reduce the time and effort required in the coordination and execution of penetration testing activities.
Cervantes is an OWASP Foundation Project
| OWASP Foundation | Snyk | A2SECURE |
|---|---|---|
 |
 |
 |
- OpenSource
- Multiplatform
- Multilanguage
- AI Integration
- Team Collaboration
- BuiltIn dashbaords and analytics
- Manage your clients and Offensive Security projects
- Modular reporting system
- One click reports creation
- And more
Maintaining Cervantes requires substantial time and effort. If you are interested in assisting with QA testing, documentation or fixing bugs then please review our GitHub page and issues to participate.
This project is licensed under the GNU Affero General Public License (AGPL-3.0), except for specific components that remain licensed under the Apache License 2.0.
AGPL-3.0 applies to the majority of the project.
Apache License 2.0 applies to the components listed in the NOTICE file.
For more details, see the full LICENSE and NOTICE files included in this repository.
Copyright (C) 2025 Ruben Mesquida Gomila
OWASP Cervantes and all contributions are protected under their respective licenses. For more information on license terms, visit:
