Dradis Framework

Today we got some amazing news, Dradis Framework was chosen the winner in the Security Assessment/Datamining category of the Best Tools Report 2011 by ToolsWatch Service

From the document:

The present document describes the Best Tools and Utilities from 2011. Divided into categories, carefully separated, based on the VulnerabilityDatabase.com Scoring Criteria.

We are thankful to the @ToolsWatch team and want to send congrats to all the participants!

Good day!

New plugins

• Retina Network Security Scanner upload plugin.
• Zed Attack Proxy upload plugin.

Updated plugins

• Nessus upload plugin is orders of magnitude faster.
• Nikto upload plugin is orders of magnitude faster.
• Nmap upload plugin is orders of magnitude faster.
• VulnDB import plugin (to support VulnDB HQ integration)

Internals

• Updated First Time User's Wizard.
• Updated to Rails 3.2

 

• Cleaner three-column layout
• Smarter Ajax polling and auto-updating
• New version of the Nmap upload plugin
• New version of the Nessus upload plugin
• ./verify.sh now checks that libxml2 is installed
• Bugs fixed: #17, #31, #37, #43, #48

 

In Dradis 2.8 we will have a brand new three-column layout.

We have already discussed that the current Dradis interface can get cluttered at times (Tidy up your note list). In Dradis 2.8 we are introducing a cleaner layout with less text in the note list and more space for the note's content. Here are some screenshots:

One of the best features that we have been working on for the next release of Dradis will be an improved Ajax refresh feature.

We have prepared a small screencast to show it. Two different browsers are shown side by side. Notes and nodes added in one browser are replicated in the other.


Dradis 2.8 smart Ajax refresh por etdsoft

It is already in our GitHub repository so you are free to git pull and give it a shot. We will be very interested in hearing what you have to say.

We have a new documentation site:

Checkout the guides we have so far or contribute a new guide. Get involved!

This bug-fixing release which includes:

• Several closed issues: #5, #9, #13, #14, #15, #16, #19, #20.
• Improved startup scripts
• Update Rails to 3.0.9

And all the goodness introduced in 2.7.1:

• A cleaner, leaner note editor
• Improved command line API with Thor (thor -T to view all commands)
• New Configuration Manager to handle all plugin config settings
• New Upload Manager that runs uploads in the background and updates the interface through Ajax
• New plugins:
  
  • Metasploit import
  • NeXpose (.xml) upload
  • OpenVAS (.xml) upload
  • SureCheck (.sc) upload
  • w3af (.xml) upload
  • Web Exploitation Framework (wXf) upload
• Updated plugins:
  
  • Nessus plugin supports .nessus v2
  • Vuln::DB import updated to support the latest release
• Bugs fixed: #3, #4, #6, #7, #8, #10, #2888332, #2973256