what you don't know can hurt you

Register | Login

FilesNewsUsersAuthors

Home Files News &[SERVICES_TAB]About Contact Add New

Showing 1 - 25 of 111

Files from Francisco Amato

Faraday 5.9.0

Posted Nov 22, 2024

Authored by Francisco Amato | Site github.com

Faraday is a tool that introduces a new concept called IPE, or Integrated Penetration-Test Environment. It is a multiuser penetration test IDE designed for distribution, indexation and analysis of the generated data during the process of a security audit. The main purpose of Faraday is to re-use the available tools in the community to take advantage of them in a multiuser way.

Changes: Added more validations to attachments. Removed license_version from init.py. Added a configurable limit to the retrieval of vulnerabilities. Added the description field to evidence attachments in the VulnerabilitySchema. Fixed vulnerability deletion when it has more than one command associated.

tags | tool, rootkit

systems | unix

SHA-256 | 30b3b1062287c7e55a12390a34c85d5cdfb4bd7d90aaa2c4218e3319a9a8f1ff

Download | Favorite | View

Faraday 5.8.0

Posted Oct 25, 2024

Authored by Francisco Amato | Site github.com

Faraday is a tool that introduces a new concept called IPE, or Integrated Penetration-Test Environment. It is a multiuser penetration test IDE designed for distribution, indexation and analysis of the generated data during the process of a security audit. The main purpose of Faraday is to re-use the available tools in the community to take advantage of them in a multiuser way.

Changes: Added support for CVSS 4.0. Improved filtering for better notification links. Added new operator ANY_IN for pipeline job conditions. Updated nginx config template for socketio. Added contains conditional for pipelines conditions. Added custom fields as conditions.

tags | tool, rootkit

systems | unix

SHA-256 | 8b9c5c988d81106685788ea9bf9fec1f90fa1fe8e34107e705fadc70c0d689d9

Download | Favorite | View

Faraday 5.7.0

Posted Sep 23, 2024

Authored by Francisco Amato | Site github.com

Faraday is a tool that introduces a new concept called IPE, or Integrated Penetration-Test Environment. It is a multiuser penetration test IDE designed for distribution, indexation and analysis of the generated data during the process of a security audit. The main purpose of Faraday is to re-use the available tools in the community to take advantage of them in a multiuser way.

Changes: Added bulk update feature for custom attributes. Fixed hostnames not working on pipelines conditions. Allowed services to be searchable. Fixed crash on unsupported image format upload. Fixed service based jobs not working for assets.

tags | tool, rootkit

systems | unix

SHA-256 | beee684970842de8c540054542adaf530009a41ad15076dcfee818b1f25ea79d

Download | Favorite | View

Faraday 5.6.1

Posted Aug 29, 2024

Authored by Francisco Amato | Site github.com

Faraday is a tool that introduces a new concept called IPE, or Integrated Penetration-Test Environment. It is a multiuser penetration test IDE designed for distribution, indexation and analysis of the generated data during the process of a security audit. The main purpose of Faraday is to re-use the available tools in the community to take advantage of them in a multiuser way.

Changes: Resolved an issue with filtering by Custom Attributes.

tags | tool, rootkit

systems | unix

SHA-256 | b7c200cda1471eef944b3d0fbe277b9ef6fc68f020c51665a6df168efbced035

Download | Favorite | View

Faraday 5.6.0

Posted Aug 26, 2024

Authored by Francisco Amato | Site github.com

Faraday is a tool that introduces a new concept called IPE, or Integrated Penetration-Test Environment. It is a multiuser penetration test IDE designed for distribution, indexation and analysis of the generated data during the process of a security audit. The main purpose of Faraday is to re-use the available tools in the community to take advantage of them in a multiuser way.

Changes: Resolved an issue when filtering assets by numeric values. Added workspace update logic on general view. Fixed bug where workspaces updated without making any change on them.

tags | tool, rootkit

systems | unix

SHA-256 | 8129d5ada77e1560709a9e18a9acb5fe00993fca262cb66bb440b18e73fb5d2d

Download | Favorite | View

Faraday 5.5.0

Posted Aug 9, 2024

Authored by Francisco Amato | Site github.com

Faraday is a tool that introduces a new concept called IPE, or Integrated Penetration-Test Environment. It is a multiuser penetration test IDE designed for distribution, indexation and analysis of the generated data during the process of a security audit. The main purpose of Faraday is to re-use the available tools in the community to take advantage of them in a multiuser way.

Changes: Added Scheduler feature to community. Modified pytest launch parameters to fail job at first error. Added Pipelines feature in community.

tags | tool, rootkit

systems | unix

SHA-256 | c218827ec203c88ea290cb6e69047d69bd63bc9d46d9bee984efd0ad447c6dbe

Download | Favorite | View

Faraday 5.4.1

Posted Jul 25, 2024

Authored by Francisco Amato | Site github.com

Faraday is a tool that introduces a new concept called IPE, or Integrated Penetration-Test Environment. It is a multiuser penetration test IDE designed for distribution, indexation and analysis of the generated data during the process of a security audit. The main purpose of Faraday is to re-use the available tools in the community to take advantage of them in a multiuser way.

Changes: Improved bulk update logic in the general context view.

tags | tool, rootkit

systems | unix

SHA-256 | f7d3ffb7d186b618454bf7e79486864176f045d6ffc08133c35b775221b91b6a

Download | Favorite | View

Faraday 5.4.0

Posted Jul 17, 2024

Authored by Francisco Amato | Site github.com

Faraday is a tool that introduces a new concept called IPE, or Integrated Penetration-Test Environment. It is a multiuser penetration test IDE designed for distribution, indexation and analysis of the generated data during the process of a security audit. The main purpose of Faraday is to re-use the available tools in the community to take advantage of them in a multiuser way.

Changes: Implemented Elasticsearch vulnerability ingest from Faraday for comprehensive statistical analysis. Implemented workspace update functionality for changes to vulnerabilities, assets, and services. Introduced debouncer logic to prevent redundant updates to the database. Added ping timeout, ping interval and logger parameters on faraday server config. Changed session_timeout in config to float to allow for fractions of hours. Various other updates.

tags | tool, rootkit

systems | unix

SHA-256 | c77b97c39c4123f852d12ad4acfa33fbe1ee4442e74afbe37ac9b9d761710a96

Download | Favorite | View

Faraday 5.3.0

Posted May 24, 2024

Authored by Francisco Amato | Site github.com

Faraday is a tool that introduces a new concept called IPE, or Integrated Penetration-Test Environment. It is a multiuser penetration test IDE designed for distribution, indexation and analysis of the generated data during the process of a security audit. The main purpose of Faraday is to re-use the available tools in the community to take advantage of them in a multiuser way.

Changes: Modified parameters for interactive swagger. Added services and host endpoints that retrieve all the information for which the user has access. Revised the references fetching strategy to enhance memory usage during CSV export. Fixed creation of vuln from template. Modified version of libraries accordingly to dependabot findings. Added vuln endpoint that retrieves all the objects for which the user has access.

tags | tool, rootkit

systems | unix

SHA-256 | 063584371a976fa261166c576cb6d7acf6f5b258aa2bdcb2d27233aa0807257e

Download | Favorite | View

Faraday 5.2.2

Posted Apr 5, 2024

Authored by Francisco Amato | Site github.com

Faraday is a tool that introduces a new concept called IPE, or Integrated Penetration-Test Environment. It is a multiuser penetration test IDE designed for distribution, indexation and analysis of the generated data during the process of a security audit. The main purpose of Faraday is to re-use the available tools in the community to take advantage of them in a multiuser way.

Changes: When manually creating vulnerabilities, services are now listed along with their respective ports and assigned names.

tags | tool, rootkit

systems | unix

SHA-256 | f852de0f0b6d8436761426dbdc2eda922558e197112c212440905e57ecb39f15

Download | Favorite | View

Faraday 5.2.1

Posted Mar 21, 2024

Authored by Francisco Amato | Site github.com

Faraday is a tool that introduces a new concept called IPE, or Integrated Penetration-Test Environment. It is a multiuser penetration test IDE designed for distribution, indexation and analysis of the generated data during the process of a security audit. The main purpose of Faraday is to re-use the available tools in the community to take advantage of them in a multiuser way.

Changes: A fix was added to ignore remove_sid when the database does not exist.

tags | tool, rootkit

systems | unix

SHA-256 | 318a03b0bfd0cb3b5213eebb4c4186a0efe85178a3011594299a87fc50660590

Download | Favorite | View

Faraday 5.2.0

Posted Mar 15, 2024

Authored by Francisco Amato | Site github.com

Faraday is a tool that introduces a new concept called IPE, or Integrated Penetration-Test Environment. It is a multiuser penetration test IDE designed for distribution, indexation and analysis of the generated data during the process of a security audit. The main purpose of Faraday is to re-use the available tools in the community to take advantage of them in a multiuser way.

Changes: Fixed hosts stats when bulk delete is applied to vulns. Fixed an issue where the server was not updating the agents status on restart. Removed websockets port from docker-compose.

tags | tool, rootkit

systems | unix

SHA-256 | 69ef3847ab0a3944f6246bfa3a426588d80294ddfedb22b90e7e5c525e54eef9

Download | Favorite | View

Faraday 5.1.1

Posted Feb 12, 2024

Authored by Francisco Amato | Site github.com

Faraday is a tool that introduces a new concept called IPE, or Integrated Penetration-Test Environment. It is a multiuser penetration test IDE designed for distribution, indexation and analysis of the generated data during the process of a security audit. The main purpose of Faraday is to re-use the available tools in the community to take advantage of them in a multiuser way.

Changes: Improvements related to host view performance.

tags | tool, rootkit

systems | unix

SHA-256 | 51b659b04afb21ae63464b4358ca4173a6c1ec323afac98bb86dbe563bac1786

Download | Favorite | View

Faraday 5.1.0

Posted Feb 9, 2024

Authored by Francisco Amato | Site github.com

Faraday is a tool that introduces a new concept called IPE, or Integrated Penetration-Test Environment. It is a multiuser penetration test IDE designed for distribution, indexation and analysis of the generated data during the process of a security audit. The main purpose of Faraday is to re-use the available tools in the community to take advantage of them in a multiuser way.

Changes: Modified analytics type enum. Performance improved in assets views making several vulnerabilities stats statics in asset's model. Fixed a references. Now custom fields are available for filtering vulnerabilities. Also added date type for custom fields. They changed the order in which they set the path constant of faraday_home in order to fix a bug with faraday_manage when is installed by deb/rpm.

tags | tool, rootkit

systems | unix

SHA-256 | 67ad865570d2efcb7dc38ff4c31174b122f57c0229af72d8f2b89349d599ff78

Download | Favorite | View

Faraday 5.0.1

Posted Jan 3, 2024

Authored by Francisco Amato | Site github.com

Faraday is a tool that introduces a new concept called IPE, or Integrated Penetration-Test Environment. It is a multiuser penetration test IDE designed for distribution, indexation and analysis of the generated data during the process of a security audit. The main purpose of Faraday is to re-use the available tools in the community to take advantage of them in a multiuser way.

Changes: The changelog is missing but hey, new release!

tags | tool, rootkit

systems | unix

SHA-256 | 1f83b807f82f58533272d0a31c9a36067bb8dedb20a708d37d2a4c437072bbd9

Download | Favorite | View

Faraday 5.0.0

Posted Dec 14, 2023

Authored by Francisco Amato | Site github.com

Faraday is a tool that introduces a new concept called IPE, or Integrated Penetration-Test Environment. It is a multiuser penetration test IDE designed for distribution, indexation and analysis of the generated data during the process of a security audit. The main purpose of Faraday is to re-use the available tools in the community to take advantage of them in a multiuser way.

Changes: A breaking change where Faraday now uses Celery as the main way to import reports. In addition, they have removed twisted and replaced raw websockets with socket.io. Added option to faraday-server to run workers.

tags | tool, rootkit

systems | unix

SHA-256 | c86b107d52957be8d1db2d23617afb792307282d5164cf7d89fce10fcfc99454

Download | Favorite | View

Faraday 4.6.2

Posted Nov 14, 2023

Authored by Francisco Amato | Site github.com

Faraday is a tool that introduces a new concept called IPE, or Integrated Penetration-Test Environment. It is a multiuser penetration test IDE designed for distribution, indexation and analysis of the generated data during the process of a security audit. The main purpose of Faraday is to re-use the available tools in the community to take advantage of them in a multiuser way.

Changes: Added exclusion of unnecessary fields from VulnerabilitySchema in filter endpoint.

tags | tool, rootkit

systems | unix

SHA-256 | 243b78dfe79d703637c5e252286cda6a79c309251e63a9a02fd24439a710b737

Download | Favorite | View

Faraday 4.6.1

Posted Oct 20, 2023

Authored by Francisco Amato | Site github.com

Faraday is a tool that introduces a new concept called IPE, or Integrated Penetration-Test Environment. It is a multiuser penetration test IDE designed for distribution, indexation and analysis of the generated data during the process of a security audit. The main purpose of Faraday is to re-use the available tools in the community to take advantage of them in a multiuser way.

Changes: A modification to optimize hosts API when stats are not needed. New exclude_stats query param in workspace endpoint. Filter .webp files in vulns attachment endpoint because CVE-2023-4863.

tags | tool, rootkit

systems | unix

advisories | CVE-2023-4863

SHA-256 | 5e7be3f1d610f7946281287a0d3b04e06411b7ca3e6e765fcd0597635dfc811d

Download | Favorite | View

Faraday 4.6.0

Posted Sep 7, 2023

Authored by Francisco Amato | Site github.com

Faraday is a tool that introduces a new concept called IPE, or Integrated Penetration-Test Environment. It is a multiuser penetration test IDE designed for distribution, indexation and analysis of the generated data during the process of a security audit. The main purpose of Faraday is to re-use the available tools in the community to take advantage of them in a multiuser way.

Changes: Deleted Cascade from KB.

tags | tool, rootkit

systems | unix

SHA-256 | b4070968ef102bae5ab1a7a7cceae0724952466312b627626cba9e5a616edd3e

Download | Favorite | View

Faraday 4.5.1

Posted Jul 17, 2023

Authored by Francisco Amato | Site github.com

Faraday is a tool that introduces a new concept called IPE, or Integrated Penetration-Test Environment. It is a multiuser penetration test IDE designed for distribution, indexation and analysis of the generated data during the process of a security audit. The main purpose of Faraday is to re-use the available tools in the community to take advantage of them in a multiuser way.

Changes: Fixed pillow version to 9.4.0.

tags | tool, rootkit

systems | unix

SHA-256 | df029dc1108b3c1ce369d55984b0647627eb0377597a1b9b8a9ee71c519fdb88

Download | Favorite | View

Faraday 4.5.0

Posted Jul 14, 2023

Authored by Francisco Amato | Site github.com

Faraday is a tool that introduces a new concept called IPE, or Integrated Penetration-Test Environment. It is a multiuser penetration test IDE designed for distribution, indexation and analysis of the generated data during the process of a security audit. The main purpose of Faraday is to re-use the available tools in the community to take advantage of them in a multiuser way.

Changes: Upgraded nixpkgs version to 23.05. Also updated version of packages in requirements. Added missing scope cvss3 field. Improved performance in hosts and hosts/filter views.

tags | tool, rootkit

systems | unix

SHA-256 | c60429b4ba3214c9d967b27fa228d4cbc84df0d656e3a124c2fa77e09f5b564a

Download | Favorite | View

Faraday 4.4.0

Posted Jun 2, 2023

Authored by Francisco Amato | Site github.com

Faraday is a tool that introduces a new concept called IPE, or Integrated Penetration-Test Environment. It is a multiuser penetration test IDE designed for distribution, indexation and analysis of the generated data during the process of a security audit. The main purpose of Faraday is to re-use the available tools in the community to take advantage of them in a multiuser way.

Changes: Addition where it is now possible to modify the host or service assigned of a vulnerability. Modification to /get_manifest where it separates the optional environment variables from the rest. Addition of the not_any filter operator which will retrieve results that do not contain the value requested. Added fix for make get_manifest to be compatible with all versions of dispatcher.

tags | tool, rootkit

systems | unix

SHA-256 | e2a5cdf7a3ce61d88cc9b378dd84618e9618ea6645c6863b04d35ed89762182c

Download | Favorite | View

Faraday 4.3.5

Posted Apr 13, 2023

Authored by Francisco Amato | Site github.com

Faraday is a tool that introduces a new concept called IPE, or Integrated Penetration-Test Environment. It is a multiuser penetration test IDE designed for distribution, indexation and analysis of the generated data during the process of a security audit. The main purpose of Faraday is to re-use the available tools in the community to take advantage of them in a multiuser way.

Changes: One bug fix to modify migration with autocommit.

tags | tool, rootkit

systems | unix

SHA-256 | 80a255faef3990e6adc9ae343bcda0e9666cecdadaa0ed4cf9bf70857efb0948

Download | Favorite | View

Faraday 4.3.4

Posted Apr 12, 2023

Authored by Francisco Amato | Site github.com

Faraday is a tool that introduces a new concept called IPE, or Integrated Penetration-Test Environment. It is a multiuser penetration test IDE designed for distribution, indexation and analysis of the generated data during the process of a security audit. The main purpose of Faraday is to re-use the available tools in the community to take advantage of them in a multiuser way.

Changes: Fixed bandit vulns. Added a fix to return public IP when behind a proxy. Added report_template as an object type.

tags | tool, rootkit

systems | unix

SHA-256 | 8026353c260fad12f44bf058697e9c8735bae663d236840940c371530147f2d8

Download | Favorite | View

Faraday 4.3.3

Posted Feb 17, 2023

Authored by Francisco Amato | Site github.com

Faraday is a tool that introduces a new concept called IPE, or Integrated Penetration-Test Environment. It is a multiuser penetration test IDE designed for distribution, indexation and analysis of the generated data during the process of a security audit. The main purpose of Faraday is to re-use the available tools in the community to take advantage of them in a multiuser way.

Changes: Added tags columns in AgentSchedule model in white version. Now sending a patching a vuln with empty list will remove all the relationships with all references. Migration cascade on KB.

tags | tool, rootkit

systems | unix

SHA-256 | 3c84faaa080021bafaf9b679e0c16af3aa684edf557c1836014c2cf350d7cee2

Download | Favorite | View