https://github.com/giterlizzi/secdb-nmap
SecDB Nmap Plugin
https://github.com/giterlizzi/secdb-nmap
cvss epss exploits nmap nse security-advisories vulnerability-detection
Last synced: 7 months ago
JSON representation
SecDB Nmap Plugin
- Host: GitHub
- URL: https://github.com/giterlizzi/secdb-nmap
- Owner: giterlizzi
- License: apache-2.0
- Created: 2025-03-07T10:55:34.000Z (7 months ago)
- Default Branch: main
- Last Pushed: 2025-03-07T11:55:05.000Z (7 months ago)
- Last Synced: 2025-03-10T02:10:44.438Z (7 months ago)
- Topics: cvss, epss, exploits, nmap, nse, security-advisories, vulnerability-detection
- Language: Lua
- Homepage: https://secdb.nttzen.cloud/
- Size: 45.9 KB
- Stars: 0
- Watchers: 1
- Forks: 0
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
- License: LICENSE
Awesome Lists containing this project
README
# SecDB Nmap plugin
## Description
SecDB Nmap plugin retrieves known vulnerability, exploit and advisory information from the ZEN SecDB Portal (https://secdb.nttzen.cloud) from services detected by Nmap.
## Getting started
nmap -sV --script secdb [--script-args secdb.mincvss=,secdb.url=]
**NOTE:** The script depends on having software versions at hand, so it only works with `-sV` flag.
The output of the Nmap is like the following:
### Arguments
| Argument | Description |
|-----------------|---------------------------------------------------------|
| `secdb.mincvss` | Filters out vulnerabilities with a CVSS score or higher |
| `secdb.url` | Specify SecDB URL (default https://secdb.nttzen.cloud) |
## Installation
* Locate where your nmap scripts are located on your system:
- for *nix system it might be `~/.nmap/scripts/` or `$NMAPDIR`
- for Mac it might be `/usr/local/Cellar/nmap//share/nmap/scripts/`
- for Windows it might be `C:\Program Files (x86)\Nmap\scripts`
* Copy the `secdb.nse` script into that directory.
* Run `nmap --script-updatedb` to update the Nmap script DB
### Dependencies
SecDB Nmap plugin uses these Nmap libraries:
- http
- json
- string
- table
- nmap
- stdnse