Faraday Review 2026: Open-Source Vuln Management

Faraday is an open-source vulnerability management platform with 6.2k GitHub stars and 1k forks. It orchestrates 80+ security tools, normalizes their output, and deduplicates findings into a single management interface.

Faraday activity dashboard showing 896 total vulnerabilities broken down by severity, most vulnerable assets, and latest findings

The company behind Faraday, Infobyte, has been around since 2004. Headquartered in Miami with a research lab in Buenos Aires.

Customers include Accenture, Volkswagen, Telefonica, Santander, BBVA, HSBC, KPMG, Lufthansa, AT&T, and Vercel.

GitHub: infobyte/faraday | Latest Release: v5.19.0 (January 2026)

I open Faraday when I am running a multi-tool pentest and need one shared workspace. It ingests output from Nmap, Nessus, Burp, and a few dozen other scanners, deduplicates findings, and lets the team collaborate on the same target list. The community edition is free and self-hosted, which is the main reason it stays in my rotation for internal engagements.

What is Faraday?

Faraday started as a tool for penetration testers who needed a single place to collect results from multiple scanners. It has since grown into a vulnerability management platform used by security operations teams, red teams, and managed security service providers.

80+ tool integrations

Normalizes output from vulnerability scanners, DAST/SAST tools, network scanners, and pentesting frameworks. Data is deduplicated automatically across tools.

Agents Dispatcher

Lightweight remote agents run scheduled or triggered scans across distributed environments. Results flow back to the central Faraday instance automatically.

Open source core

GPL-3.0 licensed with 46+ contributors and 103 releases. Self-host via Docker, PyPI, or binary packages. REST API for full automation.

Key features

Tool integrations

Faraday normalizes data from 80+ security tools:

Category	Tools
Vulnerability scanners	Nessus, OpenVAS, Qualys
SAST/DAST	OWASP ZAP, Burp Suite, Semgrep
Network	Nmap, Masscan
Pentesting	Metasploit, Nuclei
Cloud/containers	Trivy, AWS tools

All findings get normalized into a common format with automatic deduplication.

Faraday vulnerability list showing normalized findings from multiple scanners with host IPs, CVE IDs, severity ratings, and status fields

faraday-cli importing a Nessus scan report and listing critical vulnerabilities with CVE IDs and affected hosts

Agents Dispatcher

For large or distributed environments, Agents Dispatcher runs remote scans without installing the full Faraday stack on every machine:

Lightweight agents for scheduled or on-demand scanning
Horizontal scaling across multiple environments
Automatic result import back to the central instance
Works with any supported scanner

Faraday workspace management view showing multiple project workspaces with vulnerability counts and severity breakdown per workspace

Note: Unlike most ASPM tools that focus on development pipeline security, Faraday comes from the offensive security world. It's built for pentesting teams, red teams, and vulnerability assessors who need to manage findings from hands-on security testing alongside automated scanning.

Ticketing integration

System	Integration type
Jira	Direct ticket sync with bidirectional updates
ServiceNow	Vulnerability ticket creation
GitLab	Issue creation from findings
SolarWinds	Integration available

Additional products

Beyond the open-source core, Faraday offers several commercial products:

Product	What it does
Faraday Enrichment	Smart scoring that prioritizes vulnerabilities using contextual data
Faraday CART	Continuous automated attack testing
Faraday OPS	External attack surface mapping and monitoring
Faraday Labs	Offensive security research services
Red Team Services	Application, network, hardware, and physical security assessments

Faraday v5 dashboard showing 289 total vulnerabilities with risk score, severity breakdown, most vulnerable assets, and top services

Authentication and deployment

Feature	Options
Authentication	2FA, LDAP, SAML
Deployment	Cloud or on-premises
API	RESTful API for automation
CLI	faraday-cli for terminal workflows

Integrations

Vulnerability scanners

Nessus

OpenVAS

Qualys

Security testing

OWASP ZAP

Burp Suite

Metasploit

Nuclei

Semgrep

Ticketing

Jira

ServiceNow

GitLab

Getting started

Install via Docker — docker compose up -d from the Faraday repository. The web UI launches on port 5985 with PostgreSQL as the backend.

Connect your scanners — Import results manually through the web UI, use Agents Dispatcher for remote automated scanning, or push results via the REST API.

Review and deduplicate — Faraday normalizes findings across all connected tools and removes duplicates. Group findings by severity, host, or service.

Route to ticketing — Connect Jira, ServiceNow, or GitLab to create tickets from findings. Track remediation status from inside Faraday.

CLI usage

# Install Faraday CLI
pip install faraday-cli

# Connect to your Faraday instance
faraday-cli auth -f https://your-faraday-instance -u admin

# Import scan results
faraday-cli tool report /path/to/nessus-report.nessus -w my-workspace

# List vulnerabilities
faraday-cli vuln list -w my-workspace --severity critical

When to use Faraday

Faraday is the go-to choice for offensive security teams, pentesting firms, and MSSPs that need centralized vulnerability management from hands-on testing alongside automated scanning. Its roots in the pentesting world show — the interface and workflows are designed around how security assessors actually work.

Pro tip: Penetration testing teams, red teams, and MSSPs that need to aggregate findings from 80+ security tools with remote scanning agents and ticketing integration.

If your focus is purely on development pipeline security (SAST/SCA in CI/CD), tools like DefectDojo or Jit are a better fit. Faraday shines when offensive security testing is a big part of your program.

Frequently Asked Questions

What is Faraday?

Faraday is an open-source vulnerability management platform with 6.2k GitHub stars that orchestrates 80+ security tools. It normalizes and deduplicates findings from vulnerability scanners, pentesting tools, and network scanners into a unified management interface.

Is Faraday free?

Faraday’s community edition is free and open-source under GPL-3.0. The company also offers paid products including Faraday Enrichment for smart vulnerability scoring, Faraday CART for continuous automated testing, and Faraday OPS for external attack surface mapping.

What tools does Faraday integrate with?

Faraday supports 80+ tools including Nessus, OpenVAS, Qualys for vulnerability scanning, OWASP ZAP and Burp Suite for DAST, Nmap and Masscan for network scanning, Metasploit and Nuclei for pentesting, and Semgrep for SAST.

How do I install Faraday?

The quickest method is Docker Compose. Faraday also supports installation via PyPI (pip install faradaysec), binary packages for Debian/RPM, and source installation. The platform uses PostgreSQL as its database backend and exposes a web interface on port 5985.

What is Faraday Agents Dispatcher?

Agents Dispatcher enables remote scanning by deploying lightweight agents that run scheduled or triggered scans across distributed environments. Results are imported into the central Faraday instance automatically, allowing horizontal scaling for large infrastructure.