Awesome Open Source
Awesome Open Source

About

Faraday introduces a new concept - IPE (Integrated Penetration-Test Environment) a multiuser Penetration test IDE. Designed for distributing, indexing, and analyzing the data generated during a security audit.

Made for true pentesters!

Faraday was made to let you take advantage of the available tools in the community in a truly multiuser way.

Faraday crunches the data you load into different visualizations that are useful to managers and pentesters alike.

GUI - Web

Designed for simplicity, users should notice no difference between their own terminal application and the one included in Faraday. Developed with a specialized set of functionalities, users improve their own work. Do you remember the last time you programmed without an IDE? What IDEs are to programming, Faraday is to pentesting.

asciicast

To read about the latest features check out the release notes!

Installation

Refer to the releases page for the latest pre-made installers for all supported operating systems.

Check out our documentation for detailed information on how to install Faraday in all of our supported platforms

Install from repo

$ pip install virtualenv
$ virtualenv faraday_venv
$ source faraday_env/bin/activate
$ git clone [email protected]:infobyte/faraday.git
$ cd faraday
$ git clone [email protected]:infobyte/faraday-angular.git faraday/frontend
$ pip install .

For more information about the installation, check out our Installation Wiki.

Development

You need Python 3.6+ and postgres to run the faraday server.

If you want to develop for Faraday, please follow our development setup for linux or development setup for OSX.

Quickstart

Once you installed faraday packages, you will need to initialize the faraday database:

# first add your user to the faraday group
$ faraday-manage initdb

This will give you a randomly generated password to log into the web UI. Now you can start the server with:

$ sudo systemctl start faraday-server

In your browser, now you can go to localhost:5985 and login with "faraday" as username, and the password generated in the initdb step.

New Features!

All of Faraday's latest features and updates are always available on our blog. There are new entries every few weeks, don't forget to check out our amazing new improvements on its latest entry!

API

Check out the documentation of our API here.

Cli

Try faraday-cli to easily upload for information to faraday.

Check out the documentation here.

Plugins list

You feed data to Faraday from your favorite tools through Plugins. Right now there are more than 70+ supported tools, among which you will find:

There are three Plugin types: console plugins which intercept and interpret the output of the tools you execute, report plugins which allows you to import previously generated XMLs, and online plugins which access Faraday's API or allow Faraday to connect to external APIs and databases.

Read more about Plugins.

Faraday plugins code can be found in faraday-plugin repository

Features

Workspaces

Information is organized into various Workspaces. Each Workspace contains a pentest team's assignments and all the intel that is discovered.

Agents

Faraday Agents Dispatcher helps user develop integrations with Faraday written in any language. Agents collects information from different network location using different tools. You can use FaradaySEC to orchestrate tool execution.

CSV Exporting

Faraday supports CSV Exporting from its WEB UI. More information

Links

Presentations


Get A Weekly Email With Trending Projects For These Topics
No Spam. Unsubscribe easily at any time.
python (51,910
security (1,837
devops (561
pentesting (366
penetration-testing (241
infosec (192
security-audit (136
vulnerability (133
collaboration (109
vulnerability-scanners (89
orchestration (79
nmap (72
cve (61
security-automation (61
burpsuite (56
devsecops (48
chatops (30
vulnerability-management (24
collaborative (20

Find Open Source By Browsing 7,000 Topics Across 59 Categories