Information Security

Backtrack 4: Information Gathering: Dradis – Effective Information Sharing

One of the biggest problems when conducting penetration tests and vulnerability assessments is the organization of all the information obtained on the test. I used to use a program called Leo to organize my information because it had a tree like interface and you well able to create a well mapped out report of all your information. A new tool was released last year which has expanded on this same method and added some other very cool features. Dradis is an open source framework to enable effective information sharing during penetration testing exercises. It provides a centralized repository of information to keep track of what has been done so far, and what is still ahead. Dradis is thus an ideal tool to help in the process of security assesments.

Technology Insights

Easily Add a Site to Using Yahoo Search Enhancements

You can easily add reviews to sites on by using a Yahoo Search Enhancement. I had never really used Yahoo Search Enhancements but they are pretty cool and I will be using more of them in the future. They are almost like Google Gadgets specifically related to web searches. Using Yahoo Search Enhancements does not require the installation of any software. The StumbleUpon search enhancement will provide the number of reviews, links to those reviews, a link to review the site, and a link to thumbs up the site. Use the directions below to install the Yahoo Search Enhancement and review a web site on

  1. Open Yahoo Search: Visit in a browser.