Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add pseudo server type for non-ssh scanning (only cpe scan) #512 #531

Merged
merged 3 commits into from
Nov 2, 2017
Merged

Add pseudo server type for non-ssh scanning (only cpe scan) #512 #531

merged 3 commits into from
Nov 2, 2017

Conversation

kotakanbe
Copy link
Member

@kotakanbe kotakanbe commented Nov 2, 2017
edited
Loading

What did you implement:

Closes #512

I added type = "pseudo" to config.toml setting.
Specify this when you want to detect vulnerability by specifying cpename without SSH connection.
The pseudo type does not do anything when scanning.
Search for NVD at report time and detect vulnerability of the software specified as cpenamae.

  [servers.s1]
    type = "pseudo"
    cpeNames = ["cpe:/a:rubyonrails:ruby_on_rails:4.2.1"]

see also Usage: Scan vulnerabilites of non-OS packages

Todos:

You don't have to satisfy all of the following.

  • Write tests
  • Write documentation
  • Check that there aren't other open pull requests for the same issue/feature
  • Format your source code by make fmt
  • Pass the test by make test
  • Provide verification config / commands
  • Enable "Allow edits from maintainers" for this PR
  • Update the messages below

Is this ready for review?: YES
Is it a breaking change?: NO

@kotakanbe kotakanbe changed the title [WIP] Add pseudo server type for non-ssh scanning (only cpe scan) #512 Add pseudo server type for non-ssh scanning (only cpe scan) #512 Nov 2, 2017
@kotakanbe kotakanbe merged commit 00c690f into master Nov 2, 2017
@kotakanbe kotakanbe mentioned this pull request Nov 6, 2017
Merged
kotakanbe added a commit that referenced this pull request Nov 15, 2017
@kotakanbe
Merge branch 'master' into v0.5.0
642b4c3 
* master:
  Fix yum changelog option (#543)
  Update README.md (#542)
  Fix false positive: ignore oval info when kernel major version is different. (#541)
  Fix: Misdetection of OvalMatch for CentOS and Scientific in oval/util.go (#536)
  Fix: "Reboot Required" detection process in scan/redhat.go (#534)
  Remove README.fr.md because unable to maintenance..
  README Typo Update (#538)
  Insert `sudo` only at the beginning of command in deep scan #495 (#539)
  Fix config.toml validation (#537)
  Add pseudo server type for non-ssh scanning (only cpe scan) #512 (#531)
  README Update (#530)
  Update README
  send slack msg by api (#525)
  fix typo Privious -> Previous (#523)
  Fix package query fails on debian based container (#519) (#522)
  fix typo from "enviroment" to "environment" (#518)
  Fix typo in config/jsonloader.go (#517)
  Modified Spell Miss of "README.md". (#516)
  Fix .goreleaser.yml
  Fix a bug of making channels when fill oval information via HTTP (#514)
@kotakanbe kotakanbe mentioned this pull request Dec 5, 2017
Closed
@kotakanbe kotakanbe deleted the pseudo-servertype branch February 19, 2018 04:30
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@kotakanbe