exploit the possibilities

Register | Login

FilesNewsUsersAuthors

Home Files News &[SERVICES_TAB]About Contact Add New

Showing 1 - 25 of 105

Files from Francisco Amato

Faraday 5.4.1

Posted Jul 25, 2024

Authored by Francisco Amato | Site github.com

Faraday is a tool that introduces a new concept called IPE, or Integrated Penetration-Test Environment. It is a multiuser penetration test IDE designed for distribution, indexation and analysis of the generated data during the process of a security audit. The main purpose of Faraday is to re-use the available tools in the community to take advantage of them in a multiuser way.

Changes: Improved bulk update logic in the general context view.

tags | tool, rootkit

systems | unix

SHA-256 | f7d3ffb7d186b618454bf7e79486864176f045d6ffc08133c35b775221b91b6a

Download | Favorite | View

Faraday 5.4.0

Posted Jul 17, 2024

Authored by Francisco Amato | Site github.com

Faraday is a tool that introduces a new concept called IPE, or Integrated Penetration-Test Environment. It is a multiuser penetration test IDE designed for distribution, indexation and analysis of the generated data during the process of a security audit. The main purpose of Faraday is to re-use the available tools in the community to take advantage of them in a multiuser way.

Changes: Implemented Elasticsearch vulnerability ingest from Faraday for comprehensive statistical analysis. Implemented workspace update functionality for changes to vulnerabilities, assets, and services. Introduced debouncer logic to prevent redundant updates to the database. Added ping timeout, ping interval and logger parameters on faraday server config. Changed session_timeout in config to float to allow for fractions of hours. Various other updates.

tags | tool, rootkit

systems | unix

SHA-256 | c77b97c39c4123f852d12ad4acfa33fbe1ee4442e74afbe37ac9b9d761710a96

Download | Favorite | View

Faraday 5.3.0

Posted May 24, 2024

Authored by Francisco Amato | Site github.com

Faraday is a tool that introduces a new concept called IPE, or Integrated Penetration-Test Environment. It is a multiuser penetration test IDE designed for distribution, indexation and analysis of the generated data during the process of a security audit. The main purpose of Faraday is to re-use the available tools in the community to take advantage of them in a multiuser way.

Changes: Modified parameters for interactive swagger. Added services and host endpoints that retrieve all the information for which the user has access. Revised the references fetching strategy to enhance memory usage during CSV export. Fixed creation of vuln from template. Modified version of libraries accordingly to dependabot findings. Added vuln endpoint that retrieves all the objects for which the user has access.

tags | tool, rootkit

systems | unix

SHA-256 | 063584371a976fa261166c576cb6d7acf6f5b258aa2bdcb2d27233aa0807257e

Download | Favorite | View

Faraday 5.2.2

Posted Apr 5, 2024

Authored by Francisco Amato | Site github.com

Faraday is a tool that introduces a new concept called IPE, or Integrated Penetration-Test Environment. It is a multiuser penetration test IDE designed for distribution, indexation and analysis of the generated data during the process of a security audit. The main purpose of Faraday is to re-use the available tools in the community to take advantage of them in a multiuser way.

Changes: When manually creating vulnerabilities, services are now listed along with their respective ports and assigned names.

tags | tool, rootkit

systems | unix

SHA-256 | f852de0f0b6d8436761426dbdc2eda922558e197112c212440905e57ecb39f15

Download | Favorite | View

Faraday 5.2.1

Posted Mar 21, 2024

Authored by Francisco Amato | Site github.com

Faraday is a tool that introduces a new concept called IPE, or Integrated Penetration-Test Environment. It is a multiuser penetration test IDE designed for distribution, indexation and analysis of the generated data during the process of a security audit. The main purpose of Faraday is to re-use the available tools in the community to take advantage of them in a multiuser way.

Changes: A fix was added to ignore remove_sid when the database does not exist.

tags | tool, rootkit

systems | unix

SHA-256 | 318a03b0bfd0cb3b5213eebb4c4186a0efe85178a3011594299a87fc50660590

Download | Favorite | View

Faraday 5.2.0

Posted Mar 15, 2024

Authored by Francisco Amato | Site github.com

Faraday is a tool that introduces a new concept called IPE, or Integrated Penetration-Test Environment. It is a multiuser penetration test IDE designed for distribution, indexation and analysis of the generated data during the process of a security audit. The main purpose of Faraday is to re-use the available tools in the community to take advantage of them in a multiuser way.

Changes: Fixed hosts stats when bulk delete is applied to vulns. Fixed an issue where the server was not updating the agents status on restart. Removed websockets port from docker-compose.

tags | tool, rootkit

systems | unix

SHA-256 | 69ef3847ab0a3944f6246bfa3a426588d80294ddfedb22b90e7e5c525e54eef9

Download | Favorite | View

Faraday 5.1.1

Posted Feb 12, 2024

Authored by Francisco Amato | Site github.com

Faraday is a tool that introduces a new concept called IPE, or Integrated Penetration-Test Environment. It is a multiuser penetration test IDE designed for distribution, indexation and analysis of the generated data during the process of a security audit. The main purpose of Faraday is to re-use the available tools in the community to take advantage of them in a multiuser way.

Changes: Improvements related to host view performance.

tags | tool, rootkit

systems | unix

SHA-256 | 51b659b04afb21ae63464b4358ca4173a6c1ec323afac98bb86dbe563bac1786

Download | Favorite | View

Faraday 5.1.0

Posted Feb 9, 2024

Authored by Francisco Amato | Site github.com

Faraday is a tool that introduces a new concept called IPE, or Integrated Penetration-Test Environment. It is a multiuser penetration test IDE designed for distribution, indexation and analysis of the generated data during the process of a security audit. The main purpose of Faraday is to re-use the available tools in the community to take advantage of them in a multiuser way.

Changes: Modified analytics type enum. Performance improved in assets views making several vulnerabilities stats statics in asset's model. Fixed a references. Now custom fields are available for filtering vulnerabilities. Also added date type for custom fields. They changed the order in which they set the path constant of faraday_home in order to fix a bug with faraday_manage when is installed by deb/rpm.

tags | tool, rootkit

systems | unix

SHA-256 | 67ad865570d2efcb7dc38ff4c31174b122f57c0229af72d8f2b89349d599ff78

Download | Favorite | View

Faraday 5.0.1

Posted Jan 3, 2024

Authored by Francisco Amato | Site github.com

Faraday is a tool that introduces a new concept called IPE, or Integrated Penetration-Test Environment. It is a multiuser penetration test IDE designed for distribution, indexation and analysis of the generated data during the process of a security audit. The main purpose of Faraday is to re-use the available tools in the community to take advantage of them in a multiuser way.

Changes: The changelog is missing but hey, new release!

tags | tool, rootkit

systems | unix

SHA-256 | 1f83b807f82f58533272d0a31c9a36067bb8dedb20a708d37d2a4c437072bbd9

Download | Favorite | View

Faraday 5.0.0

Posted Dec 14, 2023

Authored by Francisco Amato | Site github.com

Faraday is a tool that introduces a new concept called IPE, or Integrated Penetration-Test Environment. It is a multiuser penetration test IDE designed for distribution, indexation and analysis of the generated data during the process of a security audit. The main purpose of Faraday is to re-use the available tools in the community to take advantage of them in a multiuser way.

Changes: A breaking change where Faraday now uses Celery as the main way to import reports. In addition, they have removed twisted and replaced raw websockets with socket.io. Added option to faraday-server to run workers.

tags | tool, rootkit

systems | unix

SHA-256 | c86b107d52957be8d1db2d23617afb792307282d5164cf7d89fce10fcfc99454

Download | Favorite | View

Faraday 4.6.2

Posted Nov 14, 2023

Authored by Francisco Amato | Site github.com

Faraday is a tool that introduces a new concept called IPE, or Integrated Penetration-Test Environment. It is a multiuser penetration test IDE designed for distribution, indexation and analysis of the generated data during the process of a security audit. The main purpose of Faraday is to re-use the available tools in the community to take advantage of them in a multiuser way.

Changes: Added exclusion of unnecessary fields from VulnerabilitySchema in filter endpoint.

tags | tool, rootkit

systems | unix

SHA-256 | 243b78dfe79d703637c5e252286cda6a79c309251e63a9a02fd24439a710b737

Download | Favorite | View

Faraday 4.6.1

Posted Oct 20, 2023

Authored by Francisco Amato | Site github.com

Faraday is a tool that introduces a new concept called IPE, or Integrated Penetration-Test Environment. It is a multiuser penetration test IDE designed for distribution, indexation and analysis of the generated data during the process of a security audit. The main purpose of Faraday is to re-use the available tools in the community to take advantage of them in a multiuser way.

Changes: A modification to optimize hosts API when stats are not needed. New exclude_stats query param in workspace endpoint. Filter .webp files in vulns attachment endpoint because CVE-2023-4863.

tags | tool, rootkit

systems | unix

advisories | CVE-2023-4863

SHA-256 | 5e7be3f1d610f7946281287a0d3b04e06411b7ca3e6e765fcd0597635dfc811d

Download | Favorite | View

Faraday 4.6.0

Posted Sep 7, 2023

Authored by Francisco Amato | Site github.com

Faraday is a tool that introduces a new concept called IPE, or Integrated Penetration-Test Environment. It is a multiuser penetration test IDE designed for distribution, indexation and analysis of the generated data during the process of a security audit. The main purpose of Faraday is to re-use the available tools in the community to take advantage of them in a multiuser way.

Changes: Deleted Cascade from KB.

tags | tool, rootkit

systems | unix

SHA-256 | b4070968ef102bae5ab1a7a7cceae0724952466312b627626cba9e5a616edd3e

Download | Favorite | View

Faraday 4.5.1

Posted Jul 17, 2023

Authored by Francisco Amato | Site github.com

Faraday is a tool that introduces a new concept called IPE, or Integrated Penetration-Test Environment. It is a multiuser penetration test IDE designed for distribution, indexation and analysis of the generated data during the process of a security audit. The main purpose of Faraday is to re-use the available tools in the community to take advantage of them in a multiuser way.

Changes: Fixed pillow version to 9.4.0.

tags | tool, rootkit

systems | unix

SHA-256 | df029dc1108b3c1ce369d55984b0647627eb0377597a1b9b8a9ee71c519fdb88

Download | Favorite | View

Faraday 4.5.0

Posted Jul 14, 2023

Authored by Francisco Amato | Site github.com

Faraday is a tool that introduces a new concept called IPE, or Integrated Penetration-Test Environment. It is a multiuser penetration test IDE designed for distribution, indexation and analysis of the generated data during the process of a security audit. The main purpose of Faraday is to re-use the available tools in the community to take advantage of them in a multiuser way.

Changes: Upgraded nixpkgs version to 23.05. Also updated version of packages in requirements. Added missing scope cvss3 field. Improved performance in hosts and hosts/filter views.

tags | tool, rootkit

systems | unix

SHA-256 | c60429b4ba3214c9d967b27fa228d4cbc84df0d656e3a124c2fa77e09f5b564a

Download | Favorite | View

Faraday 4.4.0

Posted Jun 2, 2023

Authored by Francisco Amato | Site github.com

Faraday is a tool that introduces a new concept called IPE, or Integrated Penetration-Test Environment. It is a multiuser penetration test IDE designed for distribution, indexation and analysis of the generated data during the process of a security audit. The main purpose of Faraday is to re-use the available tools in the community to take advantage of them in a multiuser way.

Changes: Addition where it is now possible to modify the host or service assigned of a vulnerability. Modification to /get_manifest where it separates the optional environment variables from the rest. Addition of the not_any filter operator which will retrieve results that do not contain the value requested. Added fix for make get_manifest to be compatible with all versions of dispatcher.

tags | tool, rootkit

systems | unix

SHA-256 | e2a5cdf7a3ce61d88cc9b378dd84618e9618ea6645c6863b04d35ed89762182c

Download | Favorite | View

Faraday 4.3.5

Posted Apr 13, 2023

Authored by Francisco Amato | Site github.com

Faraday is a tool that introduces a new concept called IPE, or Integrated Penetration-Test Environment. It is a multiuser penetration test IDE designed for distribution, indexation and analysis of the generated data during the process of a security audit. The main purpose of Faraday is to re-use the available tools in the community to take advantage of them in a multiuser way.

Changes: One bug fix to modify migration with autocommit.

tags | tool, rootkit

systems | unix

SHA-256 | 80a255faef3990e6adc9ae343bcda0e9666cecdadaa0ed4cf9bf70857efb0948

Download | Favorite | View

Faraday 4.3.4

Posted Apr 12, 2023

Authored by Francisco Amato | Site github.com

Faraday is a tool that introduces a new concept called IPE, or Integrated Penetration-Test Environment. It is a multiuser penetration test IDE designed for distribution, indexation and analysis of the generated data during the process of a security audit. The main purpose of Faraday is to re-use the available tools in the community to take advantage of them in a multiuser way.

Changes: Fixed bandit vulns. Added a fix to return public IP when behind a proxy. Added report_template as an object type.

tags | tool, rootkit

systems | unix

SHA-256 | 8026353c260fad12f44bf058697e9c8735bae663d236840940c371530147f2d8

Download | Favorite | View

Faraday 4.3.3

Posted Feb 17, 2023

Authored by Francisco Amato | Site github.com

Faraday is a tool that introduces a new concept called IPE, or Integrated Penetration-Test Environment. It is a multiuser penetration test IDE designed for distribution, indexation and analysis of the generated data during the process of a security audit. The main purpose of Faraday is to re-use the available tools in the community to take advantage of them in a multiuser way.

Changes: Added tags columns in AgentSchedule model in white version. Now sending a patching a vuln with empty list will remove all the relationships with all references. Migration cascade on KB.

tags | tool, rootkit

systems | unix

SHA-256 | 3c84faaa080021bafaf9b679e0c16af3aa684edf557c1836014c2cf350d7cee2

Download | Favorite | View

Faraday 4.3.2

Posted Jan 5, 2023

Authored by Francisco Amato | Site github.com

Faraday is a tool that introduces a new concept called IPE, or Integrated Penetration-Test Environment. It is a multiuser penetration test IDE designed for distribution, indexation and analysis of the generated data during the process of a security audit. The main purpose of Faraday is to re-use the available tools in the community to take advantage of them in a multiuser way.

Changes: Changed column type of advanced field in executive reports.

tags | tool, rootkit

systems | unix

SHA-256 | e0bfa1bca2fa265337ec9bd0339fb507e9dfb877d910b1949920fea23a60c85b

Download | Favorite | View

Faraday 4.3.1

Posted Dec 16, 2022

Authored by Francisco Amato | Site github.com

Faraday is a tool that introduces a new concept called IPE, or Integrated Penetration-Test Environment. It is a multiuser penetration test IDE designed for distribution, indexation and analysis of the generated data during the process of a security audit. The main purpose of Faraday is to re-use the available tools in the community to take advantage of them in a multiuser way.

Changes: Added a workspace api stats refactor.

tags | tool, rootkit

systems | unix

SHA-256 | ee40ae8209ab7633c2a0a99f04769ba88a09d3334bcd7d3af94b50e7042f790e

Download | Favorite | View

Faraday 4.3.0

Posted Dec 6, 2022

Authored by Francisco Amato | Site github.com

Faraday is a tool that introduces a new concept called IPE, or Integrated Penetration-Test Environment. It is a multiuser penetration test IDE designed for distribution, indexation and analysis of the generated data during the process of a security audit. The main purpose of Faraday is to re-use the available tools in the community to take advantage of them in a multiuser way.

Changes: Updated the associated command when an agent execution returns empty. Added cvss3 scope field to vulnerability schema. Added cvss2/3 and cwe to export_csv. Improved command object creation in bulk create. Fixed open and closed stats in ws filter endpoint. Added error command status in every validation of reports upload process. Added BulkDelete with filters. Changed filter logic on numeric fields.

tags | tool, rootkit

systems | unix

SHA-256 | 20104a160b2e4d417ce0ae0b01646a5284c8e2aeb808e7245ecace75e15a8f89

Download | Favorite | View

Faraday 4.2.0

Posted Oct 31, 2022

Authored by Francisco Amato | Site github.com

Faraday is a tool that introduces a new concept called IPE, or Integrated Penetration-Test Environment. It is a multiuser penetration test IDE designed for distribution, indexation and analysis of the generated data during the process of a security audit. The main purpose of Faraday is to re-use the available tools in the community to take advantage of them in a multiuser way.

Changes: Added stats param in hosts endpoint. A couple bug fixes. Improved agents logs. Added global commands and summary field in command model.

tags | tool, rootkit

systems | unix

SHA-256 | 5914d14057f73cf7e1ed7f7fe9b68343c80b437ca745b991b1d58229942e0d00

Download | Favorite | View

Faraday 4.1.0

Posted Sep 14, 2022

Authored by Francisco Amato | Site github.com

Faraday is a tool that introduces a new concept called IPE, or Integrated Penetration-Test Environment. It is a multiuser penetration test IDE designed for distribution, indexation and analysis of the generated data during the process of a security audit. The main purpose of Faraday is to re-use the available tools in the community to take advantage of them in a multiuser way.

Changes: Now error 403 will respond a json, not html. Added filters as params for bulk_update. Added Swagger view. Modified way of filtering dates with filters. Now only YYYYMMDD format supported. Added cvss v2 and v3 into model and api. Added support for tagging when running an agent. Cleaned up of commented code that is not needed anymore. Changed dns_resolution to resolve_hostname. Add CWE into model and api. Various other updates.

tags | tool, rootkit

systems | unix

SHA-256 | b92c5d47eb3b1122781e0b25d9dd6aa9885e1603b8af0ec841e5fc780a698569

Download | Favorite | View

Faraday 4.0.4

Posted Jul 29, 2022

Authored by Francisco Amato | Site github.com

Faraday is a tool that introduces a new concept called IPE, or Integrated Penetration-Test Environment. It is a multiuser penetration test IDE designed for distribution, indexation and analysis of the generated data during the process of a security audit. The main purpose of Faraday is to re-use the available tools in the community to take advantage of them in a multiuser way.

Changes: Removed workspaces agents relationship and now agents can run to multiple workspaces. Fixed migration f82a9136c408 checking if index and constraints exist before deleting. Added count to vulns closed. Fixed order_by cve_instances__name when no filter was provided. Added index into vulnerability.

tags | tool, rootkit

systems | unix

SHA-256 | f6e4355d08634ff461526acba4fbfe0418340d80014fb3535d0553d3f4423448

Download | Favorite | View