Collaborative Penetration Testing With Lair presented at DerbyCon 2013

by Tom Steele, Dan Kottmann,

Summary : Lair is an open-source project developed for and by penetration testers. Built on Meteor and Node.js with a dash of Python, Lair is a web application that normalizes, centralizes, and manages diverse test data from a number of common tools. With this, users can get deal with data from these tools quickly, allowing them to focus on manual testing. Unlike existing alternatives, Lair encourages team-based collaboration by automatically pushing updates to team members in real time. Paired with it’s workflow and documentation management, Lair offers a single solution for performing a detailed, thorough penetration test individually or as a team in a manner that has not been done before.