1 comment

[ 2.0 ms ] story [ 10.6 ms ] thread
Often work with SMEs and startups kicking off their security programs. One main topic is vulnerability management. For these early steps I missed 2 tools:

1, For companies that don’t do any vulnerability discovery, something that warns them that they should check. I usually recommended openCVE but I feel it is still a bit too heavy and the urgency is not clear. Hence RSS focusing on exploited vulns.

2, For companies that already do some scanning (these days I recommend trivy and OpenVAS), end up with 9999 vulnerabilities that they have a hard time triaging them. I believe exploitation and exploit availability are tin the top3 concerns for triage so I was looking for options to enrich the vulnerability data. Could not find anything that would be free and easily added in cicd/cli for exploitation information. I threw in exploit information so one does not need to add 2 things, and this database includes all the sources I had been using before. Hence API that goes for the jugular (https://inthewild.io/api/exploited) and sqlite that anybody could include + minimal python wrapper to document it.

https://www.opencve.io/welcome

https://github.com/aquasecurity/trivy

https://github.com/greenbone/openvas-scanner