Donjon Platform Knowledge Base
Enterprise-grade security assessment, risk quantification, and compliance platform documentation.
v7.0
🔒 Post-Quantum Secure
ML-DSA-65 + Ed25519
Documentation Guides
User Guide
Getting started, running scans, interpreting results, exports, AI analysis, compliance mapping, and dashboard navigation.
Administrator Guide
Installation, deployment modes, configuration, license management, user administration, backup, and platform updates.
API Reference
REST API endpoints, authentication, request/response examples, error codes, rate limiting, and tier enforcement.
Security & Licensing
Post-quantum cryptography, dual-signature verification, machine fingerprinting, air-gap security, and license architecture.
Troubleshooting
Common issues and solutions for installation, scanning, licensing, AI, database, exports, and frequently asked questions.
Training Materials
Quick start tutorial, assessment workflows, MSSP management, CI/CD integration, and certification study mapping.
Platform Overview
Donjon v7.0 is a complete, portable security assessment platform that replaces $110K+/yr in commercial tooling with a single solution. It runs from a USB drive, fixed installation, or CI/CD pipeline.
Key Capabilities
| Capability | Description |
|---|---|
| Vulnerability Assessment | Network, web, SSL/TLS, credential, and OpenVAS scanning with 318K+ CVE intelligence |
| FAIR Risk Quantification | Monte Carlo simulation translating findings into dollar-quantified risk (ALE) |
| AI-Powered Analysis | Multi-backend AI (template/Ollama/OpenAI) with data sanitization |
| Container Security | Docker/Podman image and runtime security assessment |
| Cloud Security | AWS, Azure, GCP misconfiguration detection |
| Attack Surface Management | Certificate transparency, DNS enumeration, Shodan/Censys integration |
| SBOM Generation | CycloneDX 1.4 and SPDX 2.3 from 10 package formats |
| Compliance | 10+ frameworks: NIST 800-53, HIPAA, PCI-DSS v4, ISO 27001, SOC 2, CMMC, FedRAMP, GDPR, SOX |
| CI/CD Integration | GitHub Actions, GitLab CI, Jenkins with SARIF export and security gates |
| Post-Quantum Licensing | ML-DSA-65 + Ed25519 dual-signature license verification |
License Tiers
| Feature | Community | Pro | Enterprise | Managed |
|---|---|---|---|---|
| Core Scanners (7) | ✓ | ✓ | ✓ | ✓ |
| All Scanners | — | ✓ | ✓ | ✓ |
| Scan Depths | Quick + Standard | All | All | All |
| Max Targets / Scan | 16 | Unlimited | Unlimited | Unlimited |
| Export Formats | CSV, JSON | All | All | All |
| AI Queries / Day | 10 | Unlimited | Unlimited | Unlimited |
| Scheduled Scans | — | ✓ | ✓ | ✓ |
| SSO / RBAC | — | — | ✓ | ✓ |
| Multi-Tenant | — | — | ✓ | ✓ |
| MSSP Client Management | — | — | — | ✓ |
| Max Users | 1 | 25 | Unlimited | Unlimited |
| API Rate Limit | 100/hr | 10,000/hr | Unlimited | Unlimited |
| Priority Support | — | — | ✓ | ✓ |
System Requirements
All Platforms
- Python 3.10+ (3.11+ recommended)
- 4 GB RAM minimum
- 1 GB disk (100 MB base + 800 MB intel DB)
Recommended External Tools
nmap— Network scanningnuclei— Vulnerability scanningnikto— Web scanningtestssl.sh— SSL assessmenttrivy— Container/SBOM scanningamass— DNS enumeration
All scanners gracefully degrade when external tools are unavailable. The platform operates fully with just Python installed.