|
1 | | -# SwiftnessX |
| 1 | +# SwiftnessX |
| 2 | +A cross-platform note-taking & target-tracking app for penetration testers built on ElectronJS. |
| 3 | + |
| 4 | + |
| 5 | + |
| 6 | + |
| 7 | + |
| 8 | + |
| 9 | + |
| 10 | + |
| 11 | +## Downloads |
| 12 | + |
| 13 | +**Windows:** |
| 14 | +**Linux:** |
| 15 | +**Download Payloads & Templates:** Contains data from [PayloadsAllthethings](https://github.com/swisskyrepo/PayloadsAllTheThings) and [bb-report-templates](https://github.com/gwen001/bb-reports-templates). |
| 16 | + |
| 17 | +*App supports auto-updating system when new release gets available.* |
| 18 | + |
| 19 | +**Portable Version:** The portable application allows installing the software on a portable device such as a USB - when you want to work upon different device. The current storage schema gives you an ability to use the same target’s data on multiple devices (with import/export) without creating same target with multiple instances. |
| 20 | + |
| 21 | +Windows: |
| 22 | +Linux: |
| 23 | + |
| 24 | + |
| 25 | +## Installation |
| 26 | + |
| 27 | +The current version is especially designed for Windows users therefore, installation process is pretty straightforward - just use the installer and it will be installed under the applications section. |
| 28 | + |
| 29 | +For Linux users (it's a bit complex and we will try to fix it very soon), you will need to give permission to the app ; just `chmod +x swiftness-0.1.0.AppImage` for installer file and then open it (in first attempt, it will try to install) and then it will be ready to use. (Make sure you're extracting the app in a dedicated folder) |
| 30 | + |
| 31 | +If you want to use the portable version, extract the folder and give same permission to Swiftness executable file and utilise in the same manner. |
| 32 | + |
| 33 | + |
| 34 | +## Setup Electron (if you want to run dev-environment) |
| 35 | + |
| 36 | + |
| 37 | +1. First install [Node.JS](https://nodejs.org/en/download/) on your system |
| 38 | +2. now run `npm install electron -g` |
| 39 | +3. Download or Clone this repository |
| 40 | +4. Within its folder run `npm install` to install dependencies |
| 41 | +5. And to run use `npm run dev` |
| 42 | + |
| 43 | +To update just use `git pull` or if dependencies are updated than first install them by `npm install` |
| 44 | + |
| 45 | + |
| 46 | +## Usage |
| 47 | +**** |
| 48 | +It’s pretty straightforward to use SwiftnessX, I’ve created a small video on how to use Targets with checklist: https://www.youtube.com/watch?v=s227q_rTVkw |
| 49 | + |
| 50 | +For Templates and Payloads, download this file, which has data from [PayloadsAllthethings](https://github.com/swisskyrepo/PayloadsAllTheThings) and [bb-report-templates](https://github.com/gwen001/bb-reports-templates). |
| 51 | + |
| 52 | + |
| 53 | +## Discuss |
| 54 | + |
| 55 | + |
| 56 | +- **Feature Request / Changes:** This is a very early version of SwiftnessX with a completely new flow and architecture from macOS build and its likely that some features & flow may not be perfect. We encourage you to tell us if a flow or feature is not fitting in, we will discuss with you and along with other users’ on possible way to improve or change that. |
| 57 | + |
| 58 | + |
| 59 | + Also do not hesitate on requesting a feature - we are actively working on this project |
| 60 | + |
| 61 | + |
| 62 | + |
| 63 | +- **Security:** Electron projects are often dependent upon too many 3rd party libraries and in result it has more chances of being vulnerable to security-vulnerabilities compared to native-apps. |
| 64 | + |
| 65 | + |
| 66 | + We tried our best to not make app’s modules too dependent upon the 3rd party packages however, we still recommend you to understand the basics of ElectronJS and let us know if you observe any security vulnerabilities. |
| 67 | + |
| 68 | + |
| 69 | + To understand the basics of Electron Security & NodeJS Packages: |
| 70 | + |
| 71 | + |
| 72 | + - https://electronjs.org/docs/tutorial/security |
| 73 | + - https://www.blackhat.com/docs/us-17/thursday/us-17-Carettoni-Electronegativity-A-Study-Of-Electron-Security-wp.pdf |
| 74 | + - https://www.youtube.com/watch?v=QSMbk2nLTBk |
| 75 | + |
| 76 | + |
| 77 | + You can find the packages under package.json, check them: |
| 78 | + |
| 79 | + |
| 80 | + - You can check how packages are integrated and can manually check the process by debugging the app in dev-environment. (explained above) |
| 81 | + - Use Chromium Developer Tools to check each functionality and their dependent JS files. |
| 82 | + |
| 83 | + |
| 84 | + Directly ask us on Issues Section or Email ( [email protected]) to understand how a specific package is integrated. |
| 85 | + |
| 86 | + |
| 87 | + To report a security-vulnerability within the app, please send us an email directly to [email protected] |
| 88 | + |
| 89 | + |
| 90 | + If issues are derieved from a 3rd-party module, also report to the person or team maintaining the module. |
| 91 | + |
| 92 | +- **Bugs:** |
| 93 | + |
| 94 | + |
| 95 | + When opening a new issue in the `ehrishirajsharma/SwifnessX` issue tracker, users will be presented with a template that should be filled in. |
| 96 | + |
| 97 | + |
| 98 | + The two most important pieces of information needed to evaluate the report are a description of the bug and a simple test case to recreate it. It easier to fix a bug if it can be reproduced. |
| 99 | + |
| 100 | + |
| 101 | + See [How to create a Minimal, Complete, and Verifiable example](https://stackoverflow.com/help/mcve). |
| 102 | + |
| 103 | + **Reference & Inspired from:** https://github.com/electron/electron/blob/master/docs/development/issues.md |
| 104 | +**** |
| 105 | + |
| 106 | +## Credits |
| 107 | + |
| 108 | +Special thanks to the below contributors - It would not be possible without their contributions: |
| 109 | + |
| 110 | + |
| 111 | +- Tomas Baskys |
| 112 | +- Pankaj Prajapat |
| 113 | + |
0 commit comments