https://github.com/stanfrbd/searchcve
Command line tool to get CVE useful info from any web report using the NVD database (NIST). Time saver for analysts.
https://github.com/stanfrbd/searchcve
Last synced: 9 months ago
JSON representation
Command line tool to get CVE useful info from any web report using the NVD database (NIST). Time saver for analysts.
- Host: GitHub
- URL: https://github.com/stanfrbd/searchcve
- Owner: stanfrbd
- License: gpl-3.0
- Created: 2021-09-27T13:46:42.000Z (almost 5 years ago)
- Default Branch: main
- Last Pushed: 2024-11-25T10:00:34.000Z (over 1 year ago)
- Last Synced: 2024-11-25T11:18:57.154Z (over 1 year ago)
- Language: Python
- Homepage:
- Size: 42 KB
- Stars: 40
- Watchers: 4
- Forks: 7
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
- License: LICENSE
Awesome Lists containing this project
README
# searchcve
Web scrapping tool written in python3, using regex, to get CVEs, Source and URLs.



# Features
* Web scrapping tool written in python3, using regex, to get CVEs, Source and URLs.
* Generates a CSV file in the current directory.
* Uses the NIST API v2 to get info.
# Getting started
## Install dependencies
* `requests`, `bs4` (or `beautifulsoup4`) and `prettytable` must be installed.
You might want to create a [`venv`](https://docs.python.org/3/library/venv.html) before installing the dependencies.
```
pip install -r requirements.txt
```
## Proxy
If you need to use a proxy, then write use the `-p` or `--proxy` argument.
```sh
python3 searchcve.py -u "https://us-cert.cisa.gov/ncas/alerts/aa21-209a" -p "http://127.0.0.1:9000"
```
Or you can set the proxy in the code of the script.
```python
proxy = "http://127.0.0.1:9000"
```
### Example of usage
```sh
python3 searchcve.py -u https://us-cert.cisa.gov/ncas/alerts/aa21-209a
python3 searchcve.py -u https://www.kennasecurity.com/blog/top-vulnerabilities-of-the-decade/
python3 searchcve.py --url https://arstechnica.com/gadgets/2021/07/feds-list-the-top-30-most-exploited-vulnerabilities-many-are-years-old/
python3 searchcve.py --url https://nvd.nist.gov/
```
### Development on Linux
Just in Bash (Ubuntu 18+):
```sh
chmod +x developer.sh
./developer.sh
```
### On Linux
```sh
chmod +x searchcve.py
./searchcve.py -u https://us-cert.cisa.gov/ncas/alerts/aa21-209a
./searchcve.py --url https://nvd.nist.gov/
```

# Other arguments
> Command line tool that uses the NIST API to get resources.
```sh
usage: searchcve.py [-h] [-c CVE] [-k KEYWORD] [-u URL] [-i INPUT_FILE] [-p PROXY]
options:
-h, --help show this help message and exit
-c CVE, --cve CVE Choose CVE e.g. "CVE-2020-1472"
-k KEYWORD, --keyword KEYWORD
Choose keyword e.g. "microsoft" -- it will give the 20 latest vulnerabilities and export to
csv in the current directory
-u URL, --url URL Choose URL e.g. "https://nvd.nist.gov/" -- it will export to csv in the current directory
-i INPUT_FILE, --input-file INPUT_FILE
Choose the path to input file containing CVEs or URLs e.g. "test.csv" -- it will export to csv
in the current directory
-p PROXY, --proxy PROXY
Choose proxy e.g. "http://127.0.0.1:9000"
```
```sh
python3 searchcve.py -c CVE-2020-1472
```

```sh
python3 searchcve.py -k microsoft
```

```sh
python3 searchcve.py -i cves.csv
```
