mozilla
/
scanapi
зеркало из https://github.com/mozilla/scanapi.git
1
0
Форкнуть 0
Код Задачи Пакеты Проекты Релизы Вики Активность
92 коммитов 1 ветка 0 Теги 102 KiB
Граф коммитов

92 Коммитов

Автор SHA1 Сообщение Дата
Guillaume Destuynder Mozilla Owner Account c5543b3c5f
Merge pull request #17 from Mozilla-GitHub-Standards/master 
Add Mozilla Code of Conduct
 2019-04-23 17:28:29 +00:00
Jonathan Claudius 25456fda7e
Merge pull request #18 from claudijd/deprecate_project 
Add Deprecation Notice
 2019-04-23 13:00:27 -04:00
Jonathan Claudius aacda577d4
Add Deprecation Notice 2019-04-23 12:40:21 -04:00
Mozilla-GitHub-Standards 044e6585ce Add Mozilla Code of Conduct file 
Fixes #16.

_(Message COC002)_
 2019-03-29 15:06:39 -07:00
Aaron Meihm 1741764859 Merge pull request #14 from ameihm0912/indicatorinfo 
include vulnerability summary in indicator details
 2017-09-11 10:45:03 -05:00
Aaron Meihm c5ad51d032 include vulnerability summary in indicator details 2017-09-11 10:43:35 -05:00
Aaron Meihm a92f068809 Merge pull request #13 from ameihm0912/sapichg 
serviceapi updates in scanapi
 2017-08-09 16:16:43 -05:00
Aaron Meihm c67726de21 update README runscan example usage 2017-08-09 16:13:35 -05:00
Aaron Meihm 58fe93b56e runscan: modify for newer version of serviceapi 
Modifies runscan indicator submission and ownership lookup to use newer
serviceapi. The dependency on pyservicelib has been removed.
 2017-08-09 15:29:41 -05:00
Aaron Meihm ef29415cf4 default nessusverifycert in ScanAPIConfig 2017-08-09 14:43:29 -05:00
Aaron Meihm e95cfbd53c remove cabundle parameter 2017-08-09 11:34:27 -05:00
Aaron Meihm f2c92a75ab remove path options around ca specification and use requests defaults 2017-08-09 11:28:59 -05:00
Aaron Meihm c9d93e6e5a Merge pull request #12 from ameihm0912/hostnamedetect 
add a note regarding nessus policy creation
 2017-07-27 12:40:52 -05:00
Aaron Meihm e16b816836 add a note regarding nessus policy creation 2017-07-27 12:40:09 -05:00
Aaron Meihm 147d9647b3 ensure host-ip is present before using it 
It seems in some odd cases the hostinfo does not contain this value.

Closes #11
 2017-04-17 10:17:11 -05:00
Aaron Meihm 7877edfc88 add exemption of results for certain plugin ids 2017-01-23 10:16:21 -06:00
Aaron Meihm 44e8d5d0c1 fix bug where link was always expected 2017-01-23 09:50:27 -06:00
Aaron Meihm 41cdea6dbe update README for rpm2cve 2017-01-23 09:29:53 -06:00
Aaron Meihm ec18b0844f Merge pull request #10 from ameihm0912/rpm2cve 
support results enrichment using RedHat rpm-to-cve information
 2017-01-23 09:25:49 -06:00
Aaron Meihm 3ca24ca3d5 set rpm2cve timestamp on load 2017-01-23 09:24:54 -06:00
Aaron Meihm e070d606be support results enrichment using RedHat rpm-to-cve information 
Specifically for scenarios where a scan reports an RHSA value, but is
not able to determine which packages are involved. Utilizes
supplementary information to add these details to the result structure.
 2017-01-20 15:30:10 -06:00
Aaron Meihm e4978c0f6d where possible, include a reference link with the vulnerability 
Limited to RHSA links right now.
 2017-01-18 11:21:02 -06:00
Aaron Meihm 88f539d5db reorganize cve/cvss assignment 
Ensures a score is set for each issue, even if they do not have a
CVE/CVSS provided by Nessus. In these cases we just assign a score based
on the reported impact label.
 2016-12-14 13:41:35 -06:00
Aaron Meihm cc6783b35a Merge pull request #9 from ameihm0912/doc-updates 
update README
 2016-11-30 11:06:53 -06:00
Aaron Meihm c23a66e16c update README 
Documentation updates for API endpoints and various typo fixes.
 2016-11-30 11:05:01 -06:00
Aaron Meihm d52c7f8b61 handle case where nessus provides cve value without a cvss 2016-11-29 20:38:53 -06:00
Aaron Meihm 1f65a7f462 fix bug in cvss float comparison 2016-11-29 20:09:54 -06:00
Aaron Meihm ca2be1c87a fix bug with nooutput flag 2016-11-28 13:35:51 -06:00
Aaron Meihm 7ab5de7b18 add option to filter targets using subnet filters 2016-11-28 12:20:53 -06:00
Aaron Meihm 67c4f79385 add flag to optionally filter plugin output 2016-11-24 10:39:36 -06:00
Aaron Meihm ae5465da80 fix bug in cvss filtering if vuln does not include cvss score 2016-11-24 10:13:41 -06:00
Aaron Meihm bd022b0f19 reorganize request follow mode so we honor output options 2016-11-23 15:07:49 -06:00
Aaron Meihm 93ee2defca add a version number to mozdef messages 2016-11-22 13:31:04 -06:00
Aaron Meihm e94a46ab46 vuln package extract on additional output format (USNs, etc) 2016-11-21 15:09:14 -06:00
Aaron Meihm d395649bd5 include credentialed checks flag in mozdef results 2016-11-21 15:08:52 -06:00
Aaron Meihm b6d361d18b operating-system may not be present in results 2016-11-21 14:43:51 -06:00
Aaron Meihm d0c0758e1d include scan start and end time in results 2016-11-21 13:52:02 -06:00
Aaron Meihm 4daa263827 optionally print mozdef events to stdout 2016-11-21 13:29:30 -06:00
Aaron Meihm f3d64904cf add zone option to example config 2016-11-21 13:20:44 -06:00
Aaron Meihm f97ac065e1 Merge pull request #8 from ameihm0912/unauth-output 
adds additional info to results (ports, protocols, plugin output)
 2016-11-17 12:06:56 -06:00
Aaron Meihm 4a0ae30d4d include all identified ports in result 2016-11-17 12:05:10 -06:00
Aaron Meihm d6cb5aff9d include plugin output, port, protocol in results 2016-11-17 11:43:13 -06:00
Aaron Meihm 0b7cc24fc9 Merge pull request #7 from ameihm0912/additional-stuff 
additional improvements
 2016-11-17 08:56:36 -06:00
Aaron Meihm 93a0327c38 change result processing so we consider findings without a cve 2016-11-16 16:25:05 -06:00
Aaron Meihm 16cf90aacf add better error handling for invalid scan id and creation fail 2016-11-16 16:05:20 -06:00
Aaron Meihm ceaf7d1bf3 fix scanapi error class name 2016-11-16 15:41:44 -06:00
Aaron Meihm 6fbc330e74 set content type 2016-11-16 15:31:03 -06:00
Aaron Meihm 78f1548cf7 add fetching raw csv results as an option 2016-11-16 15:13:49 -06:00
Aaron Meihm bd674d1cd2 Merge pull request #6 from claudijd/fix_setup_instructions 
Fix typo in README
 2016-11-15 15:47:49 -06:00
Jonathan Claudius 954bb46cf1
Fix typo in README 2016-11-15 16:39:38 -05:00