EOL - rethinking the project #130
Description
The project has not been updated for a while and one of the basic functionality (scanning networks and categorizing the targets) is not that accurate as it depends on nmap output and os detection on smb will not work as nmap smb version script does not support smb2. Also, there are many applications that can do a better job of enumeration.
Internally we use the tool for creating the report but there is a lot of room for improvement on this task. Also the tool is getting heavier with the screenshot functionality and another docker container.
With that said, the docker container infrastructure is not the best for shipping the tool. From the pentest perspective, the tools are used in a command line way and it's not very fast and intuitive to work with the data.
Working with the data, especially reporting, is difficult without live rendering of changes.
We are thinking about splitting the tool into several parts.
The methodology part is important for us to keep an eye on the tasks and check out the hard to learn syntax, so we may focus more on that topic.
Network scanning is often done with other tools like nexpose or nessus that are much better at detection and basic vulnerability scanning, so maybe it's more important to get tools that can work with the data.
A lot of things have changed since we invented the tool, so we'll be looking at the market and rethinking what's needed and what's already done better.