Faraday introduces a new concept (IPE) Integrated Penetration-Test Environment a multiuser Penetration test IDE. Designed for distribution, indexation and analysis of the generated data during the process of a security audit.
The main purpose of Faraday is to re-use the available tools in the community to take advantage of them in a multiuser way.
Designed for simplicity, users should notice no difference between their own terminal application and the one included in Faraday. Developed with a specialized set of functionalities that help users improve their own work. Do you remember yourself programming without an IDE? Well, Faraday does the same as an IDE does for you when programming, but from the perspective of a penetration test.
Changes made to the UX/UI:
- Improved Vulnerability Edition usability, selecting a vulnerability will load it's content automatically.
- ZSH UI now is showing notifications.
- ZSH UI displays active workspaces.
- Faraday now asks confirmation when exiting out. If you have pending conflicts to resolve it will show the number for each one.
- Vulnerability creation is now supported in the status report.
- Introducing SSLCheck, a tool for verifying bugs in SSL/TLS Certificates on remote hosts. This is integrated with Faraday as a plugin.
- Shodan Plugin is now working with the new API.
- Some cosmetic changes for the status report.
Bugfixes:
- Sorting columns in the Status Report is running smoothly.
- The Workspace icon is now based on the type of workspace being used.
- Opening the reports in QT UI opens the active workspace.
- UI Web dates fixes, we were showing dates with a off-by-one error.
- Vulnerability edition was missing 'critical' severity.
- Objects merge bugfixing
- Metadata recursive save fix