VulnWhisperer
gvm-tools
Our great sponsors
| VulnWhisperer | gvm-tools | |
|---|---|---|
| 1 | 2 | |
| 1,335 | 152 | |
| 0.7% | 0.0% | |
| 0.0 | 8.9 | |
| over 1 year ago | 7 days ago | |
| Python | Python | |
| Apache License 2.0 | GNU General Public License v3.0 only |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
VulnWhisperer
-
Building a vulnerability management dashboard
You could look at something like vuln whisperer (https://github.com/HASecuritySolutions/VulnWhisperer) which will allow you to pull in your vulnerability data from Nessus and then add your manual findings or findings from other tools to the underlying elasticsearch environment so they also show up on the vuln whisperer dashboard.
gvm-tools
-
Help propose modification to function
Greenbone vulnerability scanner. Script to create scan targets from a file with list of hosts (link to script)
-
Python filename.gmp.py two endings
I recently started a students job, where I have to automate the scanning process of the vulnerability scanner OpenVAS. The devs do have a GitHub with example scripts. I have been coding with python for a while now (small projects, nothing special), but I have never seen a filename with two "endings" like they are in the above GitHub with format filename.gmp.py. Can someone explain when this occurs? I couldn't manage to find something on the internet, that explains this.
What are some alternatives?
faraday - Open Source Vulnerability Management Platform
openvas - Containers for running the Greenbone Vulnerability Manager. Run as a single container with all services or separate single applications containers via docker-compose.
ShellShockHunter - It's a simple tool for test vulnerability shellshock
rapidscan - :new: The Multi-Tool Web Vulnerability Scanner.
RedELK - Red Team's SIEM - tool for Red Teams used for tracking and alarming about Blue Team activities as well as better usability in long term operations.
Groppy - Facilitating regex creation and deploying custom grok patterns in an ELK environment 🦌📜
Telegram-Trilateration - Proof of concept for abusing Telegram's "People Near Me" feature and tracking people's location
dp_cryptomg - Another tool for exploiting CVE-2017-9248, a cryptographic weakness in Telerik UI for ASP.NET AJAX dialog handler.
Redash - Make Your Company Data Driven. Connect to any data source, easily visualize, dashboard and share your data.