dradis - effective information sharing

7th of March 2010

dradis team — Sun, 07 Mar 2010 20:02:49 +0000

dradis v2.5.1 released!

Improved Note editor: bigger, easier to use and supports formatting!
New First Time User Wizard
Keep track of all the activity with the built-in RSS feed
Plugin improvements
- New HTML Export reporting plugin.
- New Burp Upload plugin so you can use Burp Scanner output.
- New Nikto Upload plugin to use your Nikto scan results.
Upgraded libraries: ExtJS 3.1.1, Rails 2.3.5
Bugs fixed: #2964273, #2932569, #2963253.

download now

5th of February 2010

dradis team — Fri, 05 Feb 2010 12:48:15 +0000

dradis v2.5 released!

Improved Note editor: bigger, easier to use and supports formatting!
New First Time User Wizard
Keep track of all the activity with the built-in RSS feed
Plugin improvements
- New HTML Export reporting plugin.
- New Burp Upload plugin so you can use Burp Scanner output.
- New Nikto Upload plugin to use your Nikto scan results.
Upgraded libraries: ExtJS 3.0, Rails 2.3.5
Bugs fixed: #2936554, #2938593.

download now

31st of October 2009

dradis team — Sat, 31 Oct 2009 23:08:33 +0000

dradis v2.4.1 released!

Mainly minor changes and bug fixes:

server:
- Plugin improvements
  - Nmap Upload is now using the Nmap::Parser library.
  - Featuring the new OSVDB Import plugin to query the largest independent and open source vulnerability database.
- Upload plugins. Better progress feedback. Improved error condition checking.
- Note drag'n'drop.
- New handy Rake tasks:
  - dradis:reset: When you are done with your project, use this task to start over. It clears the database and removes the uploaded files.
  - dradis:backup: If you want to create a backup of your current project, this is the right task for it.
- Bugs fixed: #2881746, #2888245, #2889402.
client:
- Bugs fixed: #2888411.

download now

29th of October 2009

dradis team — Thu, 29 Oct 2009 00:53:49 +0000

Hacker's Guide to dradis updated

The Hacker's Guide to dradis has been updated with additional information on how to use our Subversion repository.

16th of October 2009

dradis team — Fri, 16 Oct 2009 14:13:44 +0000

New Server Plugins

Keep an eye on the forums for updates.

9th of September 2009

dradis team — Wed, 09 Sep 2009 23:56:05 +0000

dradis v2.4 released!

Mainly minor changes and bug fixes:

server:
- Plugin improvements
  - Nmap Upload is now using the Nmap::Parser library.
  - Featuring the new OSVDB Import plugin to query the largest independent and open source vulnerability database.
- Upload plugins. Better progress feedback. Improved error condition checking.
- Note drag'n'drop.
- New handy Rake tasks:
  - dradis:reset: When you are done with your project, use this task to start over. It clears the database and removes the uploaded files.
  - dradis:backup: If you want to create a backup of your current project, this is the right task for it.
client:
- Bugs fixed: #2848909.

download now

8th of September 2009

dradis team — Tue, 08 Sep 2009 19:48:59 +0000

Import Plugin Tutorial

A new tutorial is avaliable in the Information for Developers page: learn how to create your own Import Plugin.

In this tutorial you will learn how to create a dradis import plugin to import into the framework's repository information held in external systems.

The step-by-step guide shows how to create a plugin that queries the Open Source Vulnerability Database (OSVDB) to extract vulnerability information.

5th of August 2009

dradis team — Wed, 05 Aug 2009 02:33:19 +0000

dradis Framework presented in DEFCON 17

After much anticipation, we presented our framework at DEFCON 17 in Las Vegas this year.

picture by @roncharette

The talk went fine, good attendance and really good feedback and ideas from the attendees. Thanks for coming to see us!

The updated set of slides has already been sent to the organisers so they can update the official site. In the mean time:

2nd of August 2009

dradis team — Sun, 02 Aug 2009 08:43:21 +0000

dradis v2.3 released!

A new release full of DEFCON goodness:

server:
- upload plugins. A new server plugin category: import into dradis the contents of any file (nmap, nessus, etc.).
- refactor the WordExport plugin:
  - create templates using Word only
  - convert any document into a dradis template in < 10 minutes
  - read more about it the WordExport templates tutorial.
- project management plugin update:
  - create project templates for future re-use (read methodologies)
  - export project in .zip format (DB + attachments)
  - import projects/templates
  - checkout / commit project revisions from and to the Meta-Server (stay tuned, soon to be released)
- email connector: you can pipe emails into the framework and get your messages (and attachments) added into the repository
- enhanced nodes tree: filtering and quick actions buttons
client:
- new import extensions: Nessus and Qualys

download now

1st of July 2009

dradis team — Wed, 01 Jul 2009 20:40:51 +0000

dradis framework in DEFCON 17

Oh yes! dradis framework is going to be in this year's DEFCON. Checkout the schedule and the talk summary.

29th of June 2009

dradis team — Mon, 29 Jun 2009 12:57:56 +0000

dradis framework in BackTrack 4

The dradis framework is now part of BackTrack 4. Checkout the Pre Release ISO.

Thanks to TheX1le, muts and the rest of the BT team for making this possible.

11th of June 2009

dradis team — Thu, 11 Jun 2009 17:27:26 +0000

dradis v2.2.0 released!

A new release with some juicy features:

server:
- add attachments to nodes
- refresh buttons to the tree and the notes list
- force webrick even if mongrel is installed (no SSL support in mongrel)
- Rails runs in "production" mode
client:
- dradis can be used with wxRuby 2.0.0
- better error handling for REST web service communication errors
- easier REST credentials configuration in ./conf/dradis.xml

download now

9th of June 2009

dradis team — Tue, 09 Jun 2009 19:26:49 +0000

New flash demo

dradis 2.2 flash demo available here.

3rd of June 2009

dradis team — Wed, 03 Jun 2009 03:55:04 +0000

dradis new logo

The project finally has a new logo:

It is the work of Matthew Rex Downham and it is released under a Creative Commons Attribution-Noncommercial-Share Alike 3.0 license.

Ideas about the logo? Comments? Suggestions? Join the conversation at the community forums.

17th of April 2009

dradis team — Fri, 17 Apr 2009 21:03:40 +0000

dradis v2.1.1 released!

We have a new release with many of the features showcased at dc4420:

server:
- import/export plugin architecture
- import/export plugin generators
- sample WordXML export plugin
- sample WikiMedia import plugin
client:
- import extention allows nmap output imports
- import note from plain text file
- more powerful add extension: add a note from the console

download now

4th of April 2009

dradis team — Sat, 04 Apr 2009 16:01:58 +0000

dradis community forums

dradis community forums are open!

20th of March 2009

dradis team — Fri, 20 Mar 2009 19:30:21 +0000

dradis presentation at dc4420

dradis was presented at the Defcon London meeting yesterday. It was good fun and we had lots of valuable feedback. dc4420 - Thanks for the invitation!

Here are the slides: dradis - Effective Information Sharing.

8th of March 2009

dradis team — Sun, 08 Mar 2009 22:33:09 +0000

The RSS feed is alive!

22nd of February 2009

dradis team — Sun, 22 Feb 2009 22:21:15 +0000

dradis v2.0.1 released!

After three weeks, over 60 commits and nearly 1k downloads of dradis 2.0.0 we have a new release:

Smart command line parsing: the console client accepts multi-word parameters using quote characters
The add extension brings back the ability to add nodes and categories from the console
Close bug 2572271: ruby 1.8.7 compatibility fix for wxWidgets interface
First security patch (and a new security reports page)
Minor bug fixes

download now

16th of February 2009

dradis team — Mon, 16 Feb 2009 10:12:21 +0000

New documentation and how-to guides:

Screencast: Installing Dradis 2.0 on Backtrack 4.0 Beta (by dyngnosis).
Client side extensions: Dradis extensions: how they work and how to write them
How-to export the dradis repository to a Word report: dradis reporting: quick & neat word export

31st of January 2009

dradis team — Sat, 31 Jan 2009 23:54:12 +0000

dradis v2.0 released!

After a pre-release in DEFCON-16 dradis 2.0 is out with some awesome new features:-

New web interface: demo.
More flexibility: the new tree structure makes dradis useful for any type of testing.
Improved security: with SSL support and user authentication.
Better integration with other tools and systems through the new REST interface.

Read the full CHANGELOG.

download now

11th of November 2008

dradis team — Tue, 11 Nov 2008 23:12:01 +0000

dradis 2.0 flash demo available here.

6th of August 2008

dradis team — Wed, 06 Aug 2008 12:12:34 +0000

dradis 2.0 (prerelease-vegas) will be presented at DEFCON-16 as part of john's Virtually Hacking presentation. New features:

SSL communication between client and server.
information is structured using a flexible nodes framework. Check the screenshots.
the dradis Multiverse has arrived.

No official package has been created for this release, you will need to check out the trunk (client/trunk/ and server/trunk) of the subversion repository at sourceforge. [browse the web svn]

12th of June 2008

dradis team — Thu, 12 Jun 2008 14:12:54 +0000

We have created a one-click installer for Windows users. It takes care of all the prerequisites and dependencies.

4th of April 2008

dradis team — Fri, 04 Apr 2008 16:12:02 +0000

dradis v1.2 released!

What is new?

client:
- export to XML module is now part of the standard module set.
- a new implementation of the command line parser: now it is possible to use single and double quotes to pass multi-word arguments to the different commands.
- fixed the window.rb:159 bug.
server:
- a slightly less annoying implementation of the web interface auto refresh functionality.
- the services added through the web interface can have a name now :)
- simple prevention against embedded XSS.

29th of February 2008

dradis team — Fri, 29 Feb 2008 13:10:12 +0000

dradis v1.1 released!

What is new?

New client GUI that runs in Linux, Windows and Mac OS (screenshots).
New web interface.
Improved step-by-step install and setup instructions.
New modules (in the discussion & contribute page):
- Export to XML.
- nmap: run nmap from dradis and store the results in the knowledge base.