CVElk
CVE_Prioritizer
CVElk | CVE_Prioritizer | |
---|---|---|
1 | 6 | |
41 | 420 | |
- | - | |
3.7 | 7.3 | |
about 1 month ago | 27 days ago | |
Python | Python | |
MIT License | BSD 3-clause "New" or "Revised" License |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
CVElk
CVE_Prioritizer
- POST request to get CVE CVSS score
- CVE_Prioritizer: Streamline vulnerability patching with CVSS, EPSS, and CISA's Known Exploited Vulnerabilities. Prioritize actions based on real-time threat information, gain a competitive advantage, and stay informed about the latest trends.
-
CVE Prioritizer tool
Today I'm happy to share that you can now use CVE Prioritizer to fetch and prioritize the Top 10 Trending vulnerabilities of the last 7 days from cvetrends.com in real time. If interested, check it out and let me know what you think. Feedback is always welcome! https://github.com/TURROKS/CVE_Prioritizer
-
What are some "above and beyond" side projects for a SOC analyst?
This is a tool I built as a side project, it has helped reduce the time and effort required for prioritizing vulnerabilities https://github.com/TURROKS/CVE_Prioritizer
- TURROKS/CVE_Prioritizer: CVE_Prioritizer combines CVSS, EPSS and CISAs Known Exploited Vulnerabilities to help you prioritize vulnerabilities
-
Vulnerability Prioritization
For my fellow Cyber Defenders and those interested in getting into this fantastic field, I wanted to share CVE_Prioritizer with the community; it is a python tool that helps you prioritize vulnerabilities based on CVSS, EPSS, and whether or not the vulnerabilities have been included in the CISA's Known Exploited Vulnerabilities Catalog.
What are some alternatives?
cve-bin-tool - The CVE Binary Tool helps you determine if your system includes known vulnerabilities. You can scan binaries for over 200 common, vulnerable components (openssl, libpng, libxml2, expat and others), or if you know the components used, you can get a list of known vulnerabilities associated with an SBOM or a list of components and versions.
nvdlib - A simple wrapper for the National Vulnerability CVE/CPE API
sarenka - OSINT tool - gets data from services like shodan, censys etc. in one app
opencve - CVE Alerting Platform
faraday - Open Source Vulnerability Management Platform
vulnerablecode - A free and open vulnerabilities database and the packages they impact. And the tools to aggregate and correlate these vulnerabilities. Sponsored by NLnet https://nlnet.nl/project/vulnerabilitydatabase/ for https://www.aboutcode.org/ Chat at https://gitter.im/aboutcode-org/vulnerablecode Docs at https://vulnerablecode.readthedocs.org/