-
Notifications
You must be signed in to change notification settings - Fork 21
4 API methods and modules
vFeed, Inc edited this page Oct 19, 2022
·
6 revisions
The methods and modules are a set of functions responsible to achieve a certain tasks such as getting information about vulnerabilities, exporting metadata into a file or regularly updating the threat database.
The actual version, 1.2.0, comes with the basic methods and modules to achieve the following tasks:
- core/Information : Used to render information about vulnerability (CVE) alongside and references.
- core/Classification : Used to enumerate information regarding the affected packages, the affected targets, configurations (CPEs & packages or libraries) and the weaknesses related to them such as CWE, WASC, CAPEC, categories such as CERT C++, CWE/SANS Top 25, OWASP Top lists and more.
- core/Risk : Used to display CVSS 2 and CVSS 3 scores, EPSS & KEV.
- core/Defense : Leveraged to list detective and preventive defense rules such affected packages, patches, fixes, bug ids, advisory bulletins, IPS rules and much more.
- core/Inspection : Used to list the scripts and signatures related to vulnerability scanners.
- core/Exploitation : Leveraged to get the available PoCs and exploits from many sources related to the vulnerability
- core/Export : Performs a full vulnerability metadata extraction and create a JSON/YAML content file ready to be used and consumed.
- lib/Update : Performs an automated database update from vFeed, Inc. private repositories.
- lib/Search : Offers basic capability to search for CVE, CPE (2.2 & 2.3) and CWE occurrences.