CVE_Prioritizer
vulnerablecode
CVE_Prioritizer | vulnerablecode | |
---|---|---|
6 | 2 | |
420 | 473 | |
- | 1.9% | |
7.3 | 8.6 | |
26 days ago | 2 days ago | |
Python | Python | |
BSD 3-clause "New" or "Revised" License | Apache License 2.0 |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
CVE_Prioritizer
- POST request to get CVE CVSS score
- CVE_Prioritizer: Streamline vulnerability patching with CVSS, EPSS, and CISA's Known Exploited Vulnerabilities. Prioritize actions based on real-time threat information, gain a competitive advantage, and stay informed about the latest trends.
-
CVE Prioritizer tool
Today I'm happy to share that you can now use CVE Prioritizer to fetch and prioritize the Top 10 Trending vulnerabilities of the last 7 days from cvetrends.com in real time. If interested, check it out and let me know what you think. Feedback is always welcome! https://github.com/TURROKS/CVE_Prioritizer
-
What are some "above and beyond" side projects for a SOC analyst?
This is a tool I built as a side project, it has helped reduce the time and effort required for prioritizing vulnerabilities https://github.com/TURROKS/CVE_Prioritizer
- TURROKS/CVE_Prioritizer: CVE_Prioritizer combines CVSS, EPSS and CISAs Known Exploited Vulnerabilities to help you prioritize vulnerabilities
-
Vulnerability Prioritization
For my fellow Cyber Defenders and those interested in getting into this fantastic field, I wanted to share CVE_Prioritizer with the community; it is a python tool that helps you prioritize vulnerabilities based on CVSS, EPSS, and whether or not the vulnerabilities have been included in the CISA's Known Exploited Vulnerabilities Catalog.
vulnerablecode
-
SBOM with VulnerableCode.io
$ git clone https://github.com/nexB/vulnerablecode.git $ cd vulnerablecode $ make envfile $ docker-compose build
- CVE Alerting Platform
What are some alternatives?
CVElk - Autoconfigured ELK Stack That Contains All EPSS and NVD CVE Data
opencve - CVE Alerting Platform
nvdlib - A simple wrapper for the National Vulnerability CVE/CPE API
flake8-bandit - Automated security testing using bandit and flake8.
vulscan - Advanced vulnerability scanning with Nmap NSE
CVE-2021-37740 - PoC for DoS vulnerability CVE-2021-37740 in firmware v3.0.3 of SCN-IP100.03 and SCN-IP000.03 by MDT. The bug has been fixed in firmware v3.0.4.
Jira-Lens - Fast and customizable vulnerability scanner For JIRA written in Python
grype - A vulnerability scanner for container images and filesystems
Heartbleed - Heartbleed vulnerability exploited 🩸
jake - Check your Python environments for vulnerable Open Source packages with OSS Index or Sonatype Nexus Lifecycle.
nerve - NERVE Continuous Vulnerability Scanner