Skip to content

Latest commit

 

History

History
52 lines (48 loc) · 2.4 KB

CHANGELOG.md

File metadata and controls

52 lines (48 loc) · 2.4 KB

Changelog

This file keeps track of all notable changes between the different versions of AVAIN.

v0.1.3 - 2020-07-22

Added

  • SQL Injection detection module
  • SMB enumeration module
  • WPScan module
  • CVE correlation module additionally retrieves Exploit DB IDs
  • Regexes of paths not to crawl / visit can be specified via config
  • Add globally reachable configuration profiles
  • Add alternative configurations
  • Wrapper script around CVE correlation module that enables usage outside of AVAIN framework
  • Kill function for modules
  • Previous output directory can be specified as input
  • Sample result and demonstration video

Changed

  • Overall accuracy of CVE correlation module was improved
  • In the CVE correlation module, the retrieval of CVEs where the queried CPE is not the primarily vulnerable software can be turned on and off via the config
  • AVAIN explicitly cannot run twice at the same time
  • The installation script explicitly removes the NVD database before reinstalling it to cope with DB schemata updates
  • --non-verbose flag is now the --quiet flag
  • -sN flag now means --separate-networks instead of --single-network

Fixed

  • Various small bugs

v0.1.2 - 2019-09-22

Added

  • A very detailed wiki
  • All Hydra output is now printed in real time to the screen

Changed

  • Greatly shrink README and refer to respective wiki sites
  • Hydra SSH is now by default configured to use only 4 tasks
  • The user agent for the web/crawler module is now by default configured to use a Linux UA

v0.1.1 - 2019-09-19

Changed

  • Installation of gobuster on Linux is now indepedent of detected kernel version
  • Make Docker installation quieter and add installation of locales
  • Use Ubuntu as base image in the Dockerfile
  • The used package manager for the automated installation on Linux can now be easily changed

Fixed

  • Quiet installation of apt packages
  • The module_update_interval configuration parameter correctly now specifies minutes and not seconds

v0.1.0 - 2019-09-18

Added

  • Marks the base version of AVAIN, including:
    • main functionality (Nmap scanner, CVE analysis, web scraping, Telnet & SSH credential bruteforce)
    • module result sharing & aggregation for scan results, web scraping results and vulnerability scores
    • automation of installation and module updates + simple addition of new installers / updaters
    • simple configuration + simple addition of new configuration parameters