vFeed technology and engines transforms big data into correlated vulnerability and threat intelligence database and multi-formats feeds. vFeeds are focused 100% into perfecting the optimum product to empower customers technology and threat intelligence solutions. Protecting vulnerable and sensitive systems, enabling clients to rapidly detect and react against cyber-attacks.
vFeed worldwide client base comprises of a wide and diverse range of individuals and businesses from hackers, consultancy firms, CERTs and freelancers to governmental organizations, software companies and intelligence providers.
testingintegrations
is a DNIF event store that can be uploaded for testing.
Returns a list of CVEs whose description matches the input description
- input : a keyword that matches a CVE
_fetch $Keyword from testingintegrations limit 1
>>_lookup vfeed search_for_cve $Keyword
The lookup call returns output in the following structure for available data:
Field | Description |
---|---|
$Keyword | The keyword to search for in CVE database |
$CVE | CVE that matched the given keyword |
$CVESummary | Summary of the CVE that matched the given keyword |
CVE ID for the entered Snort ID
- input : a SID
_fetch $SID from testingintegrations limit 1
>>_lookup vfeed sid_to_cve $SID
The lookup call returns output in the following structure for available data:
File | Description |
---|---|
$CVE | CVE ID for the Snort ID |
$SID | Snort ID of the vulnerability |
ExploitDB ID for the entered CVE ID
- input : a CVE ID
_fetch $CVE from testingintegrations limit 1
>>_lookup vfeed cve_to_exploitdb $CVE
The lookup call returns output in the following structure for available data:
File | Description |
---|---|
$ExploitDBID | ExploitDB ID of the vulnerability |
$CVE | CVE ID of the vulnerability |
Returns D2 Elliot exploit information about the given CVE including D2 Elliot titles, and filenames.
- input : a CVE ID
_fetch $CVE from testingintegrations limit 1
>>_lookup vfeed get_d2 $CVE
The lookup call returns output in the following structure for available data:
Field | Description |
---|---|
$CVE | CVE being queried |
$VFd2ScriptName | Script names associated with this CVE |
$VFd2ScriptURLs | D2 Exploit URLs for more information on the associated script |
Returns Exploit DB information about the given CVE including IDs, Script names, and EDB URLs
- input : a CVE ID
_fetch $CVE from testingintegrations limit 1
>>_lookup vfeed get_edb $CVE
The lookup call returns output in the following structure for available data:
Field | Description |
---|---|
$CVE | CVE being queried |
$VFExploitDBIDs | Exploit DB IDs for the given CVE |
$VFExploitDBScripts | Exploit DB Script names for the given CVE |
$VFExploitDBURLs | Exploit DB URLs for more information on the associated script |
Returns Metasploit information about the given CVE including Metaploit IDs, MSF resource locators, and Script names
- input : a CVE ID
_fetch $CVE from testingintegrations limit 1
>>_lookup vfeed get_msf $CVE
The lookup call returns output in the following structure for available data:
Field | Description |
---|---|
$CVE | CVE being queried |
$VFMsfIDs | Metasploit IDs for the given CVE |
$VFMsfScriptFiles | Metasploit framework file resource locators for the given CVE |
$VFMsfScriptNames | Metasploit Scrtip names for the given CVE |
Returns Saint exploit information about the given CVE including Saint IDs, and exploit titles
- input : a CVE ID
_fetch $CVE from testingintegrations limit 1
>>_lookup vfeed get_saint $CVE
The lookup call returns output in the following structure for available data:
Field | Description |
---|---|
$CVE | CVE being queried |
$VFSaintExploitID | Saint IDs for the given CVE |
$VFSaintExploitTitles | Saint exploit Titles for the given CVE |
Returns CAPEC details for each CWE linked to the given CVE including CAPEC IDs, Titles, and steps for mitigations
- input : a CVE ID
_fetch $CVE from testingintegrations limit 1
>>_lookup vfeed get_capec $CVE
The lookup call returns output in the following structure for available data:
Field | Description |
---|---|
$CVE | CVE being queried |
$VFCweID | CWE linked with the given CVE |
$VFCapecIDs | CAPEC IDs for the given CWE |
$VFCapecTitles | CAPEC Titles for the given CWE |
$VFCapecURLs | CAPEC Mitre URLs for more information on the given CWE |
$VFCapecMitigations | List of mitigations for the given CWE |
Returns CWE Weaknesses Category details (as Top 2011, CERT C++, Top 25, OWASP ....) for each CWE matched to the given CVE
- input : a CVE ID
_fetch $CVE from testingintegrations limit 1
>>_lookup vfeed get_category $CVE
The lookup call returns output in the following structure for available data:
Field | Description |
---|---|
$CVE | CVE being queried |
$VFCweID | CWE linked with the given CVE |
$VFCategoryID | Category ID for the given CWE |
$VFCategoryTitle | Category Titles for the given CWE |
$VFCategoryURL | Category URL for more information on the given CWE |
Returns CPE ID information about the given CVE
- input : a CVE ID
_fetch $CVE from testingintegrations limit 1
>>_lookup vfeed get_cpe $CVE
The lookup call returns output in the following structure for available data:
Field | Description |
---|---|
$CVE | CVE being queried |
$VFCPE | CPE IDs linked to the given CVE |
Returns additional verbose information about the given CVE including date published, date modified, and a verbose summary.
- input : a CVE ID
_fetch $CVE from testingintegrations limit 1
>>_lookup vfeed get_cve $CVE
The lookup call returns output in the following structure for available data:
Field | Description |
---|---|
$CVE | CVE being queried |
$VFCVEDatePublished | The date the CVE was first published |
$VFCVEDateModified | The date the CVE was last modified |
$VFCVESummary | A verbose summary of the the given CVE |
Returns a list of CWE IDs linked to the given CVE
- input : a CVE ID
_fetch $CVE from testingintegrations limit 1
>>_lookup vfeed get_cwe $CVE
The lookup call returns output in the following structure for available data:
Field | Description |
---|---|
$CVE | CVE being queried |
$VFCweIDs | List of CWE IDs linked to the given CVE |
Returns Web Application Consortium details for each CWE linked to the given CVE
- input : a CVE ID
_fetch $CVE from testingintegrations limit 1
>>_lookup vfeed get_wasc $CVE
The lookup call returns output in the following structure for available data:
Field | Description |
---|---|
$CVE | CVE being queried |
$VFCweID | CWE linked with the given CVE |
$VFWascID | CWE linked to the given CVE |
$VFWascTitle | CWE linked to the given CVE |
$VFWascID | CWE linked to the given CVE |
Returns IBM Aixapar patch details for the given CVE
- input : a CVE ID
_fetch $CVE from testingintegrations limit 1
>>_lookup vfeed get_aixapar $CVE
The lookup call returns output in the following structure for available data:
Field | Description |
---|---|
$CVE | CVE being queried |
$VFAixaparIDs | IBM Aixapar patch IDs for the given CVE |
$VFAixaparURLs | IBM Aixapar patch URLs for more information about the given CVE |
Returns Cisco patch details for the given CVE
- input : a CVE ID
_fetch $CVE from testingintegrations limit 1
>>_lookup vfeed get_cisco $CVE
The lookup call returns output in the following structure for available data:
Field | Description |
---|---|
$CVE | CVE being queried |
$VFCiscoIDs | Cisco patch IDs for the given CVE |
Returns Debian patch details for the given CVE
- input : a CVE ID
_fetch $CVE from testingintegrations limit 1
>>_lookup vfeed get_debian $CVE
The lookup call returns output in the following structure for available data:
Field | Description |
---|---|
$CVE | CVE being queried |
$VFDebianIDs | Debian patch IDs for the given CVE |
$VFDebianURLs | Debian patch URLs for more information about the given CVE |
Returns Fedora patch details for the given CVE
- input : a CVE ID
_fetch $CVE from testingintegrations limit 1
>>_lookup vfeed get_fedora $CVE
The lookup call returns output in the following structure for available data:
Field | Description |
---|---|
$CVE | CVE being queried |
$VFFedoraIDs | Fedora patch IDs for the given CVE |
$VFFedoraURLs | Fedora patch URLs for more information about the given CVE |
Returns Gentoo patch details for the given CVE
- input : a CVE ID
_fetch $CVE from testingintegrations limit 1
>>_lookup vfeed get_gentoo $CVE
The lookup call returns output in the following structure for available data:
Field | Description |
---|---|
$CVE | CVE being queried |
$VFGentooIDs | Gentoo patch IDs for the given CVE |
$VFGentooURLs | Gentoo patch URLs for more information about the given CVE |
Returns HP patch details for the given CVE
- input : a CVE ID
_fetch $CVE from testingintegrations limit 1
>>_lookup vfeed get_hp $CVE
The lookup call returns output in the following structure for available data:
Field | Description |
---|---|
$CVE | CVE being queried |
$VFHpIDs | HP patch IDs for the given CVE |
$VFHpURLs | HP patch URLs for more information about the given CVE |
Returns Mandriva patch details for the given CVE
- input : a CVE ID
_fetch $CVE from testingintegrations limit 1
>>_lookup vfeed get_mandriva $CVE
The lookup call returns output in the following structure for available data:
Field | Description |
---|---|
$CVE | CVE being queried |
$VFMandrivaIDs | Mandriva patch IDs for the given CVE |
$VFMandrivaURLs | Mandriva patch URLs for more information about the given CVE |
Returns Microsoft patch details for the given CVE
- input : a CVE ID
_fetch $CVE from testingintegrations limit 1
>>_lookup vfeed get_microsoft $CVE
The lookup call returns output in the following structure for available data:
Field | Description |
---|---|
$CVE | CVE being queried |
$VFMicrosoftIDs | Microsoft patch IDs for the given CVE |
$VFMicrosoftURLs | Microsoft patch URLs for more information about the given CVE |
Report on the vulnerabilities in Redhat associated with the given CVE ID
- input : a CVE ID
_fetch $CVE from testingintegrations limit 1
>>_lookup vfeed get_redhat $CVE
The lookup call returns output in the following structure for available data:
Field | Description |
---|---|
$CVE | The CVE ID of the vulnerability |
$VFRedhatCVE | The Redhat CVE ID |
$VFRedhatCategory | Category of the vulneratibility (i.e. Bugzilla or Redhat) |
$VFRedhatId | The vulnerability ID for Redhat |
$VFRedhatUrl | URL for the Redhat vulnerability |
Report on the vulnerabilities in Suse associated with the given CVE ID
- input : a CVE ID
_fetch $CVE from testingintegrations limit 1
>>_lookup vfeed get_suse $CVE
The lookup call returns output in the following structure for available data:
Field | Description |
---|---|
$CVE | The CVE ID of the vulnerability |
$VFSuseId | The Suse CVE ID |
$VFSuseUrl | URL for the Suse vulnerability |
Report on the vulnerabilities in Ubuntu associated with the given CVE ID
- input : a CVE ID
_fetch $CVE from testingintegrations limit 1
>>_lookup vfeed get_ubuntu $CVE
The lookup call returns output in the following structure for available data:
Field | Description |
---|---|
$CVE | The CVE ID of the vulnerability |
$VFUbuntueId | The Ubuntu CVE ID |
$VFUbuntuUrl | URL for the Ubuntu vulnerability |
Report on the vulnerabilities in VMWare associated with the given CVE ID
- input : a CVE ID
_fetch $CVE from testingintegrations limit 1
>>_lookup vfeed get_vmware $CVE
The lookup call returns output in the following structure for available data:
Field | Description |
---|---|
$CVE | The CVE ID of the vulnerability |
$VFVMWreareId | The VMWare CVE ID |
$VFVMWareUrl | URL for the VMWare vulnerability |
Report on the vulnerabilities from BID(Security Focus) associated with the given CVE ID
- input : a CVE ID
_fetch $CVE from testingintegrations limit 1
>>_lookup vfeed get_bid $CVE
The lookup call returns output in the following structure for available data:
Field | Description |
---|---|
$CVE | The CVE ID of the vulnerability |
$VFBidId | The BID(Security Focus) CVE ID |
$VFBidUrl | URL for the BID(Security Focus) vulnerability |
Report on the vulnerabilities from CertVN associated with the given CVE ID
- input : a CVE ID
_fetch $CVE from testingintegrations limit 1
>>_lookup vfeed get_certvn $CVE
The lookup call returns output in the following structure for available data:
Field | Description |
---|---|
$CVE | The CVE ID of the vulnerability |
$VFCertVNId | The CertVN CVE ID |
$VFCertVNUrl | URL for the CertVN vulnerability |
Report on the vulnerabilities from IAVM associated with the given CVE ID
- input : a CVE ID
_fetch $CVE from testingintegrations limit 1
>>_lookup vfeed get_iavm $CVE
The lookup call returns output in the following structure for available data:
Field | Description |
---|---|
$CVE | The CVE ID of the vulnerability |
$VFIAVMId | The IAVM CVE ID |
$VFIAVMKey | IAVM key for the vulnerability |
$VFIAVMTitle | Title for the vulnerability |
Report on the vulnerabilities from Refs associated with the given CVE ID
- input : a CVE ID
_fetch $CVE from testingintegrations limit 1
>>_lookup vfeed get_refs $CVE
The lookup call returns output in the following structure for available data:
Field | Description |
---|---|
$CVE | The CVE ID of the vulnerability |
$VFRefsId | The reference CVE ID |
$VFRefsUrl | URL for the reference vulnerability |
Report on the vulnerabilities from SCIP associated with the given CVE ID
- input : a CVE ID
_fetch $CVE from testingintegrations limit 1
>>_lookup vfeed get_scip $CVE
The lookup call returns output in the following structure for available data:
Field | Description |
---|---|
$CVE | The CVE ID of the vulnerability |
$VFSCIPId | The SCIP CVE ID |
$VFSCIPUrl | URL for the SCIP vulnerability |
CVSS report associated with the given CVE ID
- input : a CVE ID
_fetch $CVE from testingintegrations limit 1
>>_lookup vfeed get_cvss $CVE
The lookup call returns output in the following structure for available data:
Field | Description |
---|---|
$CVE | The CVE ID of the vulnerability |
$VFCVSSAccessComplexity | Access complexity of the CVE |
$VFCVSSAccessVector | Access vector of the CVE |
$VFCVSSAuthentication | Authentication of the CVSS |
$VFCVSSAvailability | Availability of the CVE vulnerability |
$VFCVSSBase | Base vulnerability of CVE |
$VFCVSSConfidentiality | Confidentiality of the CVE |
$VFCVSSExploitability | Exploitability of the CVE |
$VFCVSSImpact | Impact of the CVE |
$VFCVSSIntegrity | Integrity of the CVE |
$VFCVSSVector | Attack vector of the CVE |
CVSS Severity associated with the given CVE ID
- input : a CVE ID
_fetch $CVE from testingintegrations limit 1
>>_lookup vfeed get_severity $CVE
CVSS Severity Walkthrough Video
The lookup call returns output in the following structure for available data:
Field | Description |
---|---|
$CVE | The CVE ID of the vulnerability |
$VFCVSSAccessComplexity | Access complexity of the CVE |
$VFCVSSAccessVector | Access vector of the CVE |
$VFCVSSAuthentication | Authentication of the CVSS |
$VFCVSSAvailability | Availability of the CVE vulnerability |
$VFCVSSBase | Base vulnerability of CVE |
$VFCVSSConfidentiality | Confidentiality of the CVE |
$VFCVSSExploitability | Exploitability of the CVE |
$VFCVSSImpact | Impact of the CVE |
$VFCVSSIntegrity | Integrity of the CVE |
$VFCVSSVector | Attack vector of the CVE |
$VFSeverity | Severity level of the CVE |
$VFTopAlert | Boolean value for a top alert |
$VFTopVulnerable | Boolean value for a top vulnerability |
Report on the vulnerabilities from Snort associated with the given CVE ID
- input : a CVE ID
_fetch $CVE from testingintegrations limit 1
>>_lookup vfeed get_snort $CVE
The lookup call returns output in the following structure for available data:
Field | Description |
---|---|
$CVE | The CVE ID of the vulnerability |
$VFSnortId | The Snort CVE ID |
$VFSnortCategory | Snort vulnerability category |
$VFSnortSignature | Snort vulnerability signature |
Report on the vulnerabilities from Suricata associated with the given CVE ID
- input : a CVE ID
_fetch $CVE from testingintegrations limit 1
>>_lookup vfeed get_suricata $CVE
The lookup call returns output in the following structure for available data:
Field | Description |
---|---|
$CVE | The CVE ID of the vulnerability |
$VFSuricataId | The Suricata CVE ID |
$VFSuricataClasstype | Suricata vulnerability class type |
$VFSuricataSignature | Suricata vulnerability signature |
Report on the vulnerabilities from Nessus associated with the given CVE ID
- input : a CVE ID
_fetch $CVE from testingintegrations limit 1
>>_lookup vfeed get_nessus $CVE
The lookup call returns output in the following structure for available data:
Field | Description |
---|---|
$CVE | The CVE ID of the vulnerability |
$VFNessusFamily | Nessus vulnerability family |
$VFNessusFile | Nessus vulnerability file |
$VFNessusID | Nessus CVE ID |
$VFNessusName | Name of nessus vulnerability |
Report on the vulnerabilities from Nmap associated with the given CVE ID
- input : a CVE ID
_fetch $CVE from testingintegrations limit 1
>>_lookup vfeed get_nmap $CVE
The lookup call returns output in the following structure for available data:
Field | Description |
---|---|
$CVE | The CVE ID of the vulnerability |
$VFNmapFamily | Nmap vulnerability family |
$VFNmapFile | Nmap vulnerability file |
$VFNmapUrl | Nmap vulnerability URL |
Report on the vulnerabilities from OpenVAS associated with the given CVE ID
- input : a CVE ID
_fetch $CVE from testingintegrations limit 1
>>_lookup vfeed get_openvas $CVE
The lookup call returns output in the following structure for available data:
Field | Description |
---|---|
$CVE | The CVE ID of the vulnerability |
$VFOpenVASFamily | OpenVAS vulnerability family |
$VFOpenVASFile | OpenVAS vulnerability file |
$VFOpenVASID | OpenVAS CVE ID |
$VFOpenVASName | Name of OpenVAS vulnerability |
Report on the vulnerabilities from Oval associated with the given CVE ID
- input : a CVE ID
_fetch $CVE from testingintegrations limit 1
>>_lookup vfeed get_oval $CVE
The lookup call returns output in the following structure for available data:
Field | Description |
---|---|
$CVE | The CVE ID of the vulnerability |
$VFOvalClass | Oval vulnerability class |
$VFOvalID | Oval vulnerability ID |
$VFOvalTitle | Oval vulnerability title |
$VFOvalURL | Oval vulnerability URL |
The vFeed CVE Database can be found on the vFeed website at
$cd /dnif/CnxxxxxxxxxxxxV8/lookup_plugins/
git clone https://github.com/dnif/lookup-vfeed.git vfeed
wget -O vfeed.db "<Database-URL>"