Scribd
Upload
202 views25 pages

Dradis Framework Setup Guide

Dradis is an open-source collaboration framework designed for information security teams to effectively share information. It has editions for both community and professional use. Dradis allows for markup of notes, integration with security tools, and easy adoption through a flexible design. The document provides instructions for installing Dradis on Kali Linux, including downloading required packages and configuring the application through a web browser.

Uploaded by

anh tuan
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
202 views25 pages

Dradis Framework Setup Guide

Dradis is an open-source collaboration framework designed for information security teams to effectively share information. It has editions for both community and professional use. Dradis allows for markup of notes, integration with security tools, and easy adoption through a flexible design. The document provides instructions for installing Dradis on Kali Linux, including downloading required packages and configuring the application through a web browser.

Uploaded by

anh tuan
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
You are on page 1/ 25

Dradis Framework

Information Security Inc.


Contents

• About Dradis
• Dradis Architecture
• Features
• Dradis Goals
• Testing Environment
• Required packages
• Installing Dradis
• Using Dradis
• References

2 Information Security Confidential - Partner Use Only


About Dradis

• Dradis is an open-source collaboration framework, tailored to


InfoSec teams

3 Information Security Confidential - Partner Use Only


About Dradis

• Two editions of Dradis Framework:

• Dradis Framework Community Edition (CE): open-source and available freely under the
GPLv2 license
• Dradis Framework Professional Edition (Pro): includes extra features that are more
useful for organizations dealing with bigger teams and multiple projects at a time

4 Information Security Confidential - Partner Use Only


Dradis Architecture

5 Information Security Confidential - Partner Use Only


Features

• Platform independent

• Markup support for the notes: text styles, code blocks, images,
links, etc.

6 Information Security Confidential - Partner Use Only


Features

• Integration with existing systems and tools:

Brakeman
Burp Suite
MediaWiki
Metasploit
Nessus
NeXpose
Nikto
Nmap
OpenVAS
….. Full list (https://dradisframework.com/ce/addons/)

7 Information Security Confidential - Partner Use Only


Dradis Goals

• Share the information effectively


• Easy to use, easy to be adopted. Otherwise it would present little
benefit over other systems
• Flexible: with a powerful and simple extensions interface

8 Information Security Confidential - Partner Use Only


Testing Environment

• Kali Linux 2017

9 Information Security Confidential - Partner Use Only


Required packages

• apt-get install libsqlite3-dev


• apt-get install libmariadbclient-dev-compat
• apt-get install mariadb-client-10.1
• apt-get install mariadb-server-10.1
• apt-get install redis-server

10 Information Security Confidential - Partner Use Only


Installing Dradis

• Installing Dradis on Kali Linux


• Installing required packages

11 Information Security Confidential - Partner Use Only


Installing Dradis

• Update “bundler”

12 Information Security Confidential - Partner Use Only


Installing Dradis

• Installing from GitHub

13 Information Security Confidential - Partner Use Only


Installing Dradis

• Installing from GitHub

14 Information Security Confidential - Partner Use Only


Installing Dradis

• Installing from GitHub

15 Information Security Confidential - Partner Use Only


Installing Dradis

• Setting up the app


• Fire up the server by running the following command

16 Information Security Confidential - Partner Use Only


Installing Dradis

• Point your browser to: http://localhost:3000


• Configure the shared password by entering it and confirming it:

17 Information Security Confidential - Partner Use Only


Installing Dradis

• Create a username, then enter the password you created above:

18 Information Security Confidential - Partner Use Only


Installing Dradis

• In a new tab in your terminal, start the Background worker that is


needed to upload and parse tool output

19 Information Security Confidential - Partner Use Only


Using Dradis

• The installation process is completed

20 Information Security Confidential - Partner Use Only


Using Dradis

• Importing nmap results


• Nmap scan saving output to Dradis.xml

21 Information Security Confidential - Partner Use Only


Using Dradis

• Importing Dradis.xml

22 Information Security Confidential - Partner Use Only


Using Dradis

• Importing Dradis.xml

23 Information Security Confidential - Partner Use Only


Using Dradis

• Host properties

24 Information Security Confidential - Partner Use Only


References

• Kitploit
http://www.kitploit.com/2017/10/dradis-framework-collaboration-and.html

• Kali Linux
https://www.kali.org/downloads/

• Dradis CE (Community Edition)


https://dradisframework.com/ce/

• Installing Dradis on Kali Linux


https://dradisframework.com/ce/documentation/install_kali.html

• Installing Dradis from GitHub


https://dradisframework.com/ce/documentation/install_git.html

25 Information Security Confidential - Partner Use Only

You might also like