Download Operational Truth™ - Fleetfolio Pentest Module
Fleetfolio Pentest Module - powered by Opsfolio
Operational Truth™ is a downloadable platform for continuous compliance and Operational Acceptance Testing (OAT), enabling real-world validation of security and operational readiness. The Fleetfolio Pentest module (powered by Opsfolio) runs locally on a workstation or server and requires installation of dependencies followed by the module setup using the provided instructions.
Overview
The Fleetfolio Pentest module is a comprehensive security assessment engine powered by Opsfolio, designed to move beyond traditional testing by enabling Operational Acceptance Testing (OAT). It performs structured penetration testing, vulnerability discovery, and real-world threat validation, delivering actionable insights through a locally deployed, privacy-first architecture.
System Requirements
- Operating System: Kali Linux (recommended), macOS 10.15+, Ubuntu 20.04+, Windows 10+ (via WSL)
- Runtime Requirements: Deno 2.x+, Go 1.16+, Node.js 16+
- Virtualization (Optional): VirtualBox 6.0+ for VM deployment
Installation commands
Workspace Setup
Choose your preferred method to get the Fleetfolio Pentest module running on your machine.
Option A: Windows WSL (Kali Linux)
To spin up Kali Linux via Windows Subsystem for Linux, run the following command in PowerShell:
wsl --install -d kali-linuxOption B: Virtual Machine (VirtualBox)
Follow these steps to set up a dedicated virtual environment.
Prerequisites
- VirtualBox: Download VirtualBox
- Visual C++ Dependencies: If you are using Windows as the host machine, you may encounter an error. Download Visual C++ Redistributable Runtimes All-in-One and run
install_all.bat. - Kali Linux VM Image: Download Kali Linux VM (VirtualBox, ~3.3 GB,
.7zfile). - Compression Tool: WinRAR or 7-Zip.
Download Kali Linux
Select Virtual Machine and then VirtualBox. The file will be in .7z format.
Install VirtualBox
Open the installer and follow the default prompts.
Extract and Import
- Extract the
.7zfile. - Inside, find the
.vdifile (orange icon) and a.vboxfile (blue icon). - Double-click the
.vboxfile to automatically import the VM into VirtualBox.
Configure the VM
- Base Memory: Set to
4096 MB(recommended). - Processor Cores: Set to
2–3(recommended). - Start the virtual machine.
Login Credentials
- Username:
kali - Password:
kali
Update the System
sudo apt update && sudo apt upgrade -y && sudo apt full-upgrade -yFixing Update Errors: If updates fail, run these fix commands:
# Force HTTPS
sudo sed -i 's|http://http.kali.org|https://http.kali.org|' /etc/apt/sources.list
# Fix missing
sudo apt-get clean && sudo apt-get update --fix-missing
# Re-run
sudo apt update && sudo apt upgrade -y && sudo apt full-upgrade -yPrerequisite API Keys & Tokens
Store your keys in a .env file for security. These credentials are required for advanced compliance and threat detection features.
WPScan
WPScan CLI tool uses the WordPress Vulnerability Database API to retrieve WordPress vulnerability data in real time.
- Visit WPScan Registration.
- Generate your API key.
- Add to
.env:OPSFOLIO_EAA_WP_TOKEN=your_key_here
VirusTotal
VirusTotal Analyse suspicious files, domains, IPs and URLs to detect malware and other breaches, automatically share them with the security community.
- Visit VirusTotal Signup.
- Copy your API key from the dashboard.
- Add to
.env:OPSFOLIO_EAA_VIRUSTOTAL_API_KEY=your_key_here
How is this guide?
Last updated on
Introduction
Fleetfolio — an operational security platform that moves beyond traditional penetration testing by enabling continuous Operational Acceptance Testing (OAT) and real-world threat exposure validation in a compliance-ready workflow.
Quick Start
Setup and execution guide for Fleetfolio Pentest Module to perform structured penetration testing and generate evidence for Operational Acceptance Testing (OAT).