-
Notifications
You must be signed in to change notification settings - Fork 270
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Feature: add security section (e.g, related CVE's) #4
Comments
|
Might be possible to use searchsploit for the CVE stuff. I use it here: https://github.com/blindfuzzy/LHF/blob/master/Modules/recon.py ; works out pretty well. |
Good tip, @blindfuzzy . As I don't want to rely on external modules/scripts/dependencies, I could use this for double-checking (as existing database). Also, maybe I could add it as optional dependency. Will have to research how useful it is when I'm done with historical CVE's. P.S. LHF looks interesting. |
I understand. Thanks :D Hoping to continue making it better. |
Dropbear SSH CVE's: https://cve.mitre.org/cgi-bin/cvekey.cgi?keyword=dropbear cve-search is missing CVE-2006-0225 (probably, due to being attributed to OpenSSH). |
Security sections for Dropbear SSH (already released) and libssh are done (release next week). Only OpenSSH is left as TODO. |
Perhaps a simple output of encountered SSH versions can be written to a file for a second script tool to interactively read then consult via-API to retrieve CVE? |
No description provided.
The text was updated successfully, but these errors were encountered: