This document discusses vulnerability management using open source tools. It outlines operational challenges like consolidating scan results from multiple sources and lack of consolidated dashboards. It then describes a general vulnerability management architecture where various scanners like Nessus, AlienVault and ZAP feed results into a consolidation database where alerts can be analyzed. Automation possibilities are discussed like importing scan results using connectors and integrating with ticketing systems. The role of a consolidation database and open source tools like ELSA, Bugzilla and Activiti in providing insights through dashboards and tracking vulnerabilities to closure is also covered.