gvm-tools
VulnWhisperer
| gvm-tools | VulnWhisperer | |
|---|---|---|
| 2 | 1 | |
| 153 | 1,335 | |
| 1.3% | 0.0% | |
| 8.7 | 0.0 | |
| 12 days ago | over 1 year ago | |
| Python | Python | |
| GNU General Public License v3.0 only | Apache License 2.0 |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
gvm-tools
-
Help propose modification to function
Greenbone vulnerability scanner. Script to create scan targets from a file with list of hosts (link to script)
-
Python filename.gmp.py two endings
I recently started a students job, where I have to automate the scanning process of the vulnerability scanner OpenVAS. The devs do have a GitHub with example scripts. I have been coding with python for a while now (small projects, nothing special), but I have never seen a filename with two "endings" like they are in the above GitHub with format filename.gmp.py. Can someone explain when this occurs? I couldn't manage to find something on the internet, that explains this.
VulnWhisperer
-
Building a vulnerability management dashboard
You could look at something like vuln whisperer (https://github.com/HASecuritySolutions/VulnWhisperer) which will allow you to pull in your vulnerability data from Nessus and then add your manual findings or findings from other tools to the underlying elasticsearch environment so they also show up on the vuln whisperer dashboard.
What are some alternatives?
openvas - Containers for running the Greenbone Vulnerability Manager. Run as a single container with all services or separate single applications containers via docker-compose.
faraday - Open Source Vulnerability Management Platform
rapidscan - :new: The Multi-Tool Web Vulnerability Scanner.
ShellShockHunter - It's a simple tool for test vulnerability shellshock
RedELK - Red Team's SIEM - tool for Red Teams used for tracking and alarming about Blue Team activities as well as better usability in long term operations.
Groppy - Facilitating regex creation and deploying custom grok patterns in an ELK environment 🦌📜
Telegram-Trilateration - Proof of concept for abusing Telegram's "People Near Me" feature and tracking people's location
dp_cryptomg - Another tool for exploiting CVE-2017-9248, a cryptographic weakness in Telerik UI for ASP.NET AJAX dialog handler.
Redash - Make Your Company Data Driven. Connect to any data source, easily visualize, dashboard and share your data.