dradis is an open source framework to enable effective sharing of information among participants in a penetration test. It is a self-contained web application that provides a centralised repository of information to keep track of what has been done so far, and what is still ahead. It has plugins to read and collect the output of a variety of network scanning tools, like Nmap, Burp Suite, and Nikto.
For downloads and more information,
visit the dradis homepage.
A great tool for audit and pentest teams, that allows generating html or word reports in your own company style. It imports from Qualys, Nexpose, Acunetix, Burp, Nessus, nmap etc to name a few with great ease. Allowing to create your own database, rulesets to de-ducplicate findings etc.
Must have for any professional red-team.
Along with your rating, you can use the comment form to post a review,
tutorial, tips and tricks, or anything else others will find useful.
If you develop this software (or work for the company), please don't rate it. You may leave a clarifying comment as long as you state your affiliation and don't specify a star rating (just leave it as “No rating”).