GVM-Docker
SSVC
GVM-Docker | SSVC | |
---|---|---|
3 | 1 | |
246 | 106 | |
0.0% | 2.8% | |
2.6 | 9.2 | |
5 months ago | 9 days ago | |
XSLT | Python | |
MIT License | GNU General Public License v3.0 or later |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
GVM-Docker
-
Free Vulnerability Tool for on prem infrastructure
Could use OpenVAS in a VM or using docker.
-
Acrobat security vulnerabilities
For a really easy way to try out OpenVAS, try https://github.com/Secure-Compliance-Solutions-LLC/GVM-Docker - you can have it up and running in like 30 minutes.
-
unattended install of openvas9
I don't know what OpenVAS installer you are using but OpenVAS 9 is very outdated. I would advise using a newer version. I help maintain a docker container that has the latest version of OpenVAS/GVM. You can check it out at: GVM-Docker
SSVC
-
How useful is CVSS Score in CVE triage - The CVSS who cried wolf
so on this point i disagree with the author. depending on what you want to do, two methodologies i've used in the past have worked well for me: - EPSS - exploit predictability scoring system. how likely is this to be exploited? for many a key metric in patching prioritization - SSVC - stakeholder specific vulnerability categorization, comes to one of four outcomes for patching - immediately, emergency window, next scheduled window, or whenever. gets to how severe an impact would be on the business as a whole.
What are some alternatives?
openvas - Containers for running the Greenbone Vulnerability Manager. Run as a single container with all services or separate single applications containers via docker-compose.
cve-scanner-testing - Vulnerable Docker images created in different ways to check Docker image CVE scanners
openvas-scanner - This repository contains the scanner component for Greenbone Community Edition.
vulnerability-management-resources - A collection of resources related to vulnerability management.
vulscan - Advanced vulnerability scanning with Nmap NSE
cve - Gather and update all available and newest CVEs with their PoC.
Reverse-Engineering-Tutorial - A FREE comprehensive reverse engineering tutorial covering x86, x64, 32-bit ARM & 64-bit ARM architectures.
ThreatMapper - Open source cloud native security observability platform. Linux, K8s, AWS Fargate and more.
openscap - NIST Certified SCAP 1.2 toolkit
crossfeed - External monitoring for organization assets
PatrowlManager - PatrOwl - Open Source, Smart and Scalable Security Operations Orchestration Platform
scan-cli-plugin - Docker Scan is a Command Line Interface to run vulnerability detection on your Dockerfiles and Docker images