{"id":13796940,"url":"https://github.com/northernsec/cve-scan","last_synced_at":"2026-01-10T19:37:03.855Z","repository":{"id":90143225,"uuid":"30114307","full_name":"NorthernSec/CVE-Scan","owner":"NorthernSec","description":"Scan systems with NMap and parse the output to a list of CVE's, CWE's and DPE's","archived":false,"fork":false,"pushed_at":"2020-04-12T16:52:39.000Z","size":285,"stargazers_count":270,"open_issues_count":8,"forks_count":71,"subscribers_count":30,"default_branch":"master","last_synced_at":"2024-11-18T11:36:33.093Z","etag":null,"topics":[],"latest_commit_sha":null,"homepage":null,"language":"Python","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"bsd-4-clause","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/NorthernSec.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"license.txt","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null}},"created_at":"2015-01-31T14:23:30.000Z","updated_at":"2024-11-13T21:16:06.000Z","dependencies_parsed_at":"2024-01-21T04:32:43.617Z","dependency_job_id":"c580d36c-03df-43db-b84c-6c3c0beaba29","html_url":"https://github.com/NorthernSec/CVE-Scan","commit_stats":null,"previous_names":[],"tags_count":0,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/NorthernSec%2FCVE-Scan","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/NorthernSec%2FCVE-Scan/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/NorthernSec%2FCVE-Scan/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/NorthernSec%2FCVE-Scan/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/NorthernSec","download_url":"https://codeload.github.com/NorthernSec/CVE-Scan/tar.gz/refs/heads/master","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":253859445,"owners_count":21975109,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":[],"created_at":"2024-08-03T23:01:18.468Z","updated_at":"2025-05-13T02:30:46.244Z","avatar_url":"https://github.com/NorthernSec.png","language":"Python","funding_links":[],"categories":["\u003ca id=\"8c5a692b5d26527ef346687e047c5c21\"\u003e\u003c/a\u003e收集"],"sub_categories":[],"readme":"# CVE-Scan\nScan systems with NMap and parse the output to a list of CVE's, CWE's and DPE's\n\n## Goals:\n * Scan a system with NMap or any other scanning tool and use the scan to analyse the systems for vulnerabilities\n * Have the posibility for multiple input formats (NMap scan, xml, Json, etc)\n * Use CVE-Search to enhance the scan to add more information\n * Have multiple export formats as well as webbrowser component\n \n### Optional:\n* Automatically download known scripts to use on exploits\n\n## Installation:\nWarning, this tutorial is for Linux systems (developed and tested on Ubuntu 14.10).\nThis program should run under Windows (and probably Mac) systems as well.\n\n### Requirements\nCVE-Scan uses the CVE-Search API to enhance your nmap scans. \u003cbr /\u003e\n**Warning** CVE-Search is not included in CVE-Scan \u003cbr /\u003e\nYou can use [CIRCL](http://circl.lu)s [public API]\n (http://cve.circl.lu), or install CVE-Search localy, or on another accessible machine.\nYou can install [CVE-Search](https://github.com/PidgeyL/cve-search) from the git repo.\nFor now, CVE-Search does not have a \"core\" package yet (Without the webpages), but I will add this later on.\nOnce you installed CVE-Search, in the configuration file, make sure you set the correct URL to it.\n\nCVE-Scan needs some aditional packages to work. Install them using:\n\n```sudo apt-get install -y nmap``` (or your package manager of choice)\n\n```pip3 install -r requirements.txt```\n\nWeasyprint has a set of sub-requirements. Please find the details [here](http://weasyprint.readthedocs.org/en/latest/install.html)\n\n## Usage:\nTo use CVE-Scan, first run an nmap scan on a system. You can modify the\n parameters however you want, however, you'd want to include Service Detection\n and OS detection. Below, you can find a default nmap scan that will output to\n an xml file.\n\n```nmap -A -O 192.168.0.1 -oX output.xml```\n\nCVE-Scan is composed of 3 major functions:\n * **converter.py**  - Converts the nmap xml to the CVE-Scan json format\n * **analyzer.py**   - Analyses either an nmap xml or a CVE-Scan json and\n queries CVE-Search to obtain vulnerability information\n * **visualizer.py** - Visualizes the results of analyzer.py\n\nand **Nmap2CVE-Search.py**, which does all of the above in 1 go.\n\nYou can either run ```python3 Nmap2CVE-Search.py output.xml``` to\n enhance and visualize the report, or\n ```python3 analyzer.py -x output.xml enhanced.json```, to create the\n enhanced report, followed by ```python3 visualizer.py enhanced.json```\n to visualize the report (default webserver on localhost:5050.\n Add -t for terminal view)\n \n All scripts in the `bin` folder can be called with the -h flag, to get more information about it.\n\n## Online Demo\nIf you want to try our [online demo](http://northernsec.eu/cve-scan),\n please visit our [website](http://northernsec.eu).\n\nSince we don't have a large budget, the website might not be available all the time.\n\n## Support us\nIf you like this tool, please consider donating, so we can keep our servers up and running.\nYou can support us on [Subscribestar](https://www.subscribestar.com/pidgey)\n\n## Licencing\nThis software is licensed under the \"Original BSD License\".\n```\n  (C) 2015  NorthernSec\t\thttps://github.com/NorthernSec\n  (c) 2015  Pieter-Jan Moreels\thttps://github.com/pidgeyl\n```\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fnorthernsec%2Fcve-scan","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fnorthernsec%2Fcve-scan","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fnorthernsec%2Fcve-scan/lists"}