Skip to content

ozzy76/cveCheck

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

2 Commits
node_modules
node_modules
 
 
.gitignore
.gitignore
 
 
README.md
README.md
 
 
cveCheck.js
cveCheck.js
 
 
package-lock.json
package-lock.json
 
 
package.json
package.json
 
 

Repository files navigation

This cli program gets EPSS scores for a list of CVE IDs. It helps answer the question "What is the exploit probability of high-impact vulnerabilities in our environment by threat actor 'X'? Provide the CVE IDs by typing/pasting or supply a path to a CSV file containing the CVE IDs.

Features

  • Fetch EPSS scores for a list of CVE IDs.
  • Determine priority based on the EPSS score.
  • Append results to an existing CSV file or create a new one.
  • Accept CVE IDs via direct input or a CSV file.
  • Know what to fix first

Dependencies

  • Node.js and npm
  • axios: For making HTTP requests.
  • fast-csv: For reading and writing CSV files.
  • fs (File System): For interacting with the file system.
  • path: For handling file paths.

npm install axios fast-csv

Run it node cveCheck.js

When prompted, you can either:

  • Enter CVE IDs separated by commas (e.g., CVE-2021-34527,CVE-2021-1675)
  • Provide the path to a CSV file containing the CVE IDs (e.g., path/to/cve_list.csv)

Starting CVE EPSS Scores Program at 3/3/2024, 2:35:56 PM... Enter CVE IDs (separated by commas) or provide a CSV file path: CVE-2021-34527,CVE-2021-1675 Fetching EPSS scores... CSV file written: epss_scores.csv Program completed.

About

No description, website, or topics provided.

Resources

Readme
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

 
 
 

Contributors

Languages