Dradis

From BackBox Wiki
This is the approved revision of this page, as well as being the most recent.
Jump to: navigation, search

Dradis

Home page: http://dradisframework.org

Dradis guides: http://guides.dradisframework.org

Dradis is a easy to use and very effective system to share information in penetration testing (see [1]).

For tutorials and videos visit [2] and [3].

Installation

You just need to open up a terminal and type: 

$ sudo apt-get install dradis

this will manage all of the related dependencies. Then you will have the following new entries in the Backbox main menu:

Auditing > Documentation & Reporting > Dradis

and

Services > dradis > (dradis reset / dradis start)

After finishing above installation you will need to start the service dradis reset so you will be able to get all the "missing gems" in your Ruby installation. Most likely you will see the following message: 

 [...]
 Some Ruby gems are missing, do you want to install them now? [y]

Type y and you will get: 

 Ok then, I am going to run bundle install for you, 
 then you should run this script again.
 [...]

Wait until the following message is displayed: 

 Your bundle is complete! Use `bundle show [gemname]` 
 to see where a bundled gem is installed.

Now run the dradis reset service once again: 

 The Gemfile's dependencies are satisfied
 The config file [config/database.yml.template] was found not to be ready to use.
 Do you want to initialize it? [y]es | [N]o | initialize [a]ll

Just type y and wait until the following info are displayed: 

 [...]
 [  DONE  ]
 ** Saving backup...                                                   [  DONE  ]
 ** Backup Saved as: /opt/dradis/server/backup/dradis_2011-xx-xx_1.zip
 ** Deleting all attachments...                                        [  DONE  ]
 ** Cleaning database...                                               [  DONE  ]
 ** Seeding database...                                                [  DONE  ]
 ** Deleting all log files...                                          [  DONE  ]

In order to check your installation you may also want to run the service dradis verify. If your installation has been successful you will have: 

 Dradis Framework dependencies verification script
 [...]

Running Standard checks. 

 [...]
 Congratulations. You seem to be ready to run the Dradis Framework.
 [...]

Now your Dradis installation is complete and perfectly working.

Basic Usage

To run Dradis you need to run the dradis start service:

Services > dradis > dradis start

then navigate through the menu and click on Dradis:

Auditing > Documentation & Reporting > Dradis

The first time you will be connected to the wizard via browser:

https://localhost:3004/wizard

the next time, in the initialisation process, you will be asked to provide a password and create or open a project:

https://localhost:3004/sessions/init

Retrieved from "http://wiki.backbox.org/index.php?title=Dradis&oldid=792"
Personal tools
Namespaces
Variants
Actions
Navigation
Toolbox
Google AdSense