{"id":13449401,"url":"https://github.com/0x4D31/salt-scanner","last_synced_at":"2025-03-22T22:33:00.611Z","repository":{"id":92636924,"uuid":"93883083","full_name":"0x4D31/salt-scanner","owner":"0x4D31","description":"Linux vulnerability scanner based on Salt Open and Vulners audit API, with Slack notifications and JIRA integration","archived":true,"fork":false,"pushed_at":"2017-10-18T03:08:17.000Z","size":772,"stargazers_count":263,"open_issues_count":4,"forks_count":58,"subscribers_count":28,"default_branch":"master","last_synced_at":"2024-09-30T13:34:04.428Z","etag":null,"topics":["devops","devops-tools","python","salt","saltstack","security","security-audit","security-scanner","security-tools","vulnerability-scanners","vulnerability-scanning"],"latest_commit_sha":null,"homepage":"","language":"Python","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"other","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/0x4D31.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null}},"created_at":"2017-06-09T17:45:08.000Z","updated_at":"2024-08-12T19:30:28.000Z","dependencies_parsed_at":"2023-03-13T07:46:10.829Z","dependency_job_id":null,"html_url":"https://github.com/0x4D31/salt-scanner","commit_stats":null,"previous_names":[],"tags_count":0,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/0x4D31%2Fsalt-scanner","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/0x4D31%2Fsalt-scanner/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/0x4D31%2Fsalt-scanner/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/0x4D31%2Fsalt-scanner/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/0x4D31","download_url":"https://codeload.github.com/0x4D31/salt-scanner/tar.gz/refs/heads/master","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":221840644,"owners_count":16889834,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["devops","devops-tools","python","salt","saltstack","security","security-audit","security-scanner","security-tools","vulnerability-scanners","vulnerability-scanning"],"created_at":"2024-07-31T06:00:37.102Z","updated_at":"2024-10-28T14:30:54.482Z","avatar_url":"https://github.com/0x4D31.png","language":"Python","funding_links":[],"categories":["Python"],"sub_categories":[],"readme":"# salt-scanner\nA linux vulnerability scanner based on Vulners Audit API and Salt Open, with Slack notifications and JIRA integration.\n\n## Features\n* Slack notification and report upload\n* JIRA integration\n* OpsGenie integration\n\n## Requirements\n* [Salt Open](https://saltstack.com/salt-open-source/) 2016.11.x (salt-master, salt-minion)¹\n* Python 2.7\n* salt _(you may need to install gcc, gcc-c++, python dev)_\n* slackclient\n* jira\n* opsgenie-sdk\n\nNote: Salt Master and Minion versions should match. Salt-Scanner supports Salt version 2016.11.x. if you are using version 2017.7.x, replace \"expr_form\" with \"tgt_type\" in salt-scanner.py.\n\n## Usage\n```\n$ ./salt-scanner.py -h\n\n ==========================================================\n  Vulnerability scanner based on Vulners API and Salt Open\n _____       _ _     _____                                 \n/  ___|     | | |   /  ___|                               \n\\ `--.  __ _| | |_  \\ `--.  ___ __ _ _ __  _ __   ___ _ __ \n `--. \\/ _` | | __|  `--. \\/ __/ _` | '_ \\| '_ \\ / _ \\ '__|\n/\\__/ / (_| | | |_  /\\__/ / (_| (_| | | | | | | |  __/ |   \n\\____/ \\__,_|_|\\__| \\____/ \\___\\__,_|_| |_|_| |_|\\___|_|   \n\n               Salt-Scanner 0.1 / by 0x4D31               \n ==========================================================\n\nusage: salt-scanner.py [-h] [-t TARGET_HOSTS] [-tF {glob,list,grain}]\n                       [-oN OS_NAME] [-oV OS_VERSION]\n\noptional arguments:\n  -h, --help            show this help message and exit\n  -t TARGET_HOSTS, --target-hosts TARGET_HOSTS\n  -tF {glob,list,grain}, --target-form {glob,list,grain}\n  -oN OS_NAME, --os-name OS_NAME\n  -oV OS_VERSION, --os-version OS_VERSION\n\n$ sudo SLACK_API_TOKEN=\"EXAMPLETOKEN\" ./salt-scanner.py -t \"*\"\n\n ==========================================================\n  Vulnerability scanner based on Vulners API and Salt Open\n _____       _ _     _____                                 \n/  ___|     | | |   /  ___|                               \n\\ `--.  __ _| | |_  \\ `--.  ___ __ _ _ __  _ __   ___ _ __ \n `--. \\/ _` | | __|  `--. \\/ __/ _` | '_ \\| '_ \\ / _ \\ '__|\n/\\__/ / (_| | | |_  /\\__/ / (_| (_| | | | | | | |  __/ |   \n\\____/ \\__,_|_|\\__| \\____/ \\___\\__,_|_| |_|_| |_|\\___|_|   \n\n               Salt-Scanner 0.1 / by 0x4D31               \n ==========================================================\n\n+ No default OS is configured. Detecting OS...\n+ Detected Operating Systems:\n   - OS Name: centos, OS Version: 7\n+ Getting the Installed Packages...\n+ Started Scanning '10.10.10.55'...\n   - Total Packages: 357\n   - 6 Vulnerable Packages Found - Severity: Low\n+ Started Scanning '10.10.10.56'...\n   - Total Packages: 392\n   - 6 Vulnerable Packages Found - Severity: Critical\n\n+ Finished scanning 2 host (target hosts: '*').\n2 Hosts are vulnerable!\n\n+ Output file created: 20170622-093138_232826a7-983f-499b-ad96-7b8f1a75c1d7.txt\n+ Full report uploaded to Slack\n+ JIRA Issue created: VM-16\n+ OpsGenie alert created\n```\nYou can also use Salt Grains such as [ec2_tags](https://github.com/saltstack/salt-contrib/blob/master/grains/ec2_tags.py) in target_hosts:\n\n```\n$ sudo ./salt-scanner.py --target-hosts \"ec2_tags:Role:webapp\" --target-form grain\n```\n\n## Slack Alert\n![Salt-Scanner](https://github.com/0x4D31/salt-scanner/blob/master/docs/slack-alert_full.jpg)\n\n## TODO\n+ Clean up the code and add some error handling\n+ Use Salt Grains for getting the OS info and installed packages\n\n---\n\n[1] Salt in 10 Minutes: https://docs.saltstack.com/en/latest/topics/tutorials/walkthrough.html\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2F0x4D31%2Fsalt-scanner","html_url":"https://awesome.ecosyste.ms/projects/github.com%2F0x4D31%2Fsalt-scanner","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2F0x4D31%2Fsalt-scanner/lists"}