Skip to content

A small python script allows you to scan the deb package repository for vulnerabilities published by the Debian project. I could not find a similar functionality in the openscap scanner.

License

Notifications You must be signed in to change notification settings

skosachiov/openscap-repo

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

6 Commits
 
 
 
 
 
 
 
 

Repository files navigation

openscap-repo

A small python script allows you to scan the deb package repository for vulnerabilities published by the Debian project. I could not find a similar functionality in the openscap scanner.

install dependencies

apt install python3-apt

wget -O debian-cve-all.json https://security-tracker.debian.org/tracker/data/json

chmod a+x openscap-repo.py

run

./openscap-repo.py buster debian-cve-all.json http://ftp.debian.org/debian/dists/buster/main/binary-amd64/Packages.gz > report.json

./openscap-repo.py buster debian-cve-all.json /var/cache/apt-mirror > report.json

links

https://cve.mitre.org/data/downloads/allitems.xml.gz

https://nvd.nist.gov/developers/vulnerabilities

About

A small python script allows you to scan the deb package repository for vulnerabilities published by the Debian project. I could not find a similar functionality in the openscap scanner.

Topics

Resources

License

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published

Languages