overview for cedric

1

Looking for Lemmy accounts about software vulnerabilities, CVEs, etc. (lemmy.ml)

submitted 6 days ago by [email protected] to c/[email protected]

1 comments fedilink

I am looking for active Lemmy accounts about software vulnerabilities, CVEs, etc. It could be specific to GHSA, CSAF, PySEC, GSD, Pypi or whatever.

I will use it in a software vulnerability lookup projects: https://github.com/cve-search/vulnerability-lookup/ in order to create Sightings about vulnerabilities.

(it's fine as well if you can provide me Mastodon accounts. I already follow CVE program)

thank you !

1

Vulnerability Lookup 1.5.0 (lemmy.ml)

submitted 2 months ago by [email protected] to c/[email protected]

0 comments fedilink

We released version 1.5.0 of the Vulnerability Lookup project! 🎉 (https://github.com/cve-search/vulnerability-lookup/)

edit-comments-with-tags meta-field Japanese source

This update brings significant new features, improvements, and fixes.

🆕 Notable Changes

We've integrated the Japan Database of Vulnerability Countermeasure Information (JVN DB), correlating security advisories from multiple sources (including NVD, GitHub, and CSAF, etc.) already available in Vulnerability Lookup.

You can now assign tags to comments directly on the website. These tags are stored in the comment's meta field and utilize the MISP Project taxonomy for vulnerabilities. Explore the taxonomy here.

We've enhanced the API to allow users to filter comments and bundles based on data available in the meta JSON field of the objects. This paves the way for leveraging more taxonomies in the future.

More details in the release notes.

Thank you very much to all the contributors and testers! 🙏

As always, feel free to create an account on the main instance operated by CIRCL.

We eagerly await your contributions! 😊

1

Vulnerability Lookup facilitates quick correlation of vulnerabilities from various sources, independent of vulnerability IDs, and streamlines the management of Coordinated Vulnerability Disclosure. (github.com)

submitted 3 months ago by [email protected] to c/[email protected]

0 comments fedilink

cross-posted from: https://lemmy.ml/post/18049618

Vulnerability Lookup facilitates quick correlation of vulnerabilities from various sources (NIST, GitHub, CSAF-Siemens, CSAF-CISCO, CSAF-CERT-Bund, PySec, VARIoT, etc.), independent of vulnerability IDs, and streamlines the management of Coordinated Vulnerability Disclosure (CVD). Vulnerability Lookup is also a collaborative platform where users can comment on security advisories and create bundles.

A Vulnerability Lookup instance operated by CIRCL is available at https://vulnerability.circl.lu.

1

A HIDS written in Python (github.com)

submitted 1 year ago by [email protected] to c/[email protected]

0 comments fedilink

A HIDS (host-based intrusion detection system) for verifying the integrity of a system.

Features

checks the integrity of system's files with a list of rules;
checks the output of commands (iptables, ...);
possibity to use RSA to sign to check the integrity of its database;
alerts are written in the logs of the system;
alerts can be sent via email to a list of users;
alerts can be sent on IRC channels through the irker IRC client (which should be running as a daemon);
verify files with Hashlookup, Pandora, MISP and YARA;
possibility to export the database in a Bloom or a Cuckoo filter.

pyHIDS is under GPLv3 license.

Homepage: https://github.com/cedricbonhomme/pyHIDS