Custom auto parsing plugins

[securisec]

Hey, do you have any templetes that I can follow to write auto parsers for other tools? Plugins that will auto detect xml files in the ~/.faraday/workspace/report folder and upload them to faraday dashboard.

Thanks!

[f-amato]

Hi @securisec, thanks for your contact

Regarding plugin development you can create plugins that parse your tools https://github.com/infobyte/faraday/wiki/Basic-plugin-development or You can connect your tools directly using our API: https://github.com/infobyte/faraday/wiki/APIs

Let us know if you need help

[securisec]

Thanks! What i am really trying to accomplish is have an auto parser similar to some of the xml parsers that are built into faraday also. (ie. nmap, nikto etc). How can I go about start developing those?

[f-amato]

Hi @securisec, You can read the following guide: https://github.com/infobyte/faraday/wiki/Basic-plugin-development Or Review our current list of plugin to get ideas: https://github.com/infobyte/faraday/tree/master/plugins/repo/

Let us know if you need help

[securisec]

Thanks! I think i am starting to understand why I cant make this work using the resources available. I dont actually have a tool that i can convert into a plugin... What I have is a binary application testing VM, which once completed, generates various reports, one being XML. i want to be able to automatically import that XML report into faraday by renaming the file report_faraday_Myapplication.xml (like nmap, nikto, arachni, etc) for further processing. The reason why the existing templates doesnt work for me is because the xml data structure is different. Would faraday be able to develop the custom auto import plugin for us? We are in a POC for the paid version right now, and it helps us take one more step to evaluate on how we can truly utilize faraday.

We can continue this conversation away from github and via email or phone if you want.

Thanks!

[micabot]

Hi @securisec! Yes, we can definitely develop that for you. In this case I would recommend that you get in touch with the person that sent the demo to you in order to discuss how to proceed with your request. Let me know if you have any questions or comments. Cheers!