cisa-kev

Description

A simple Ruby library for fetching and parsing the CISA KEV catalog.

Features

Supports requesting the CISA KEV catalog via HTTP(s).
Supports parsing previously downloaded JSON files.

Examples

require 'cisa/kev'

catalog = CISA::KEV::Catalog.load
catalog.select(&:known_ransomware_campaign_use).sort_by(&:date_added)
# =>
# [
#   ...
#  #<CISA::KEV::Vulnerability:0x00007fc0a6e715f8
#   @cve_id="CVE-2023-24955",
#   @date_added=#<Date: 2024-03-26 ((2460396j,0s,0n),+0s,2299161j)>,
#   @due_date=#<Date: 2024-04-16 ((2460417j,0s,0n),+0s,2299161j)>,
#   @known_ransomware_campaign_use=true,
#   @notes="https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-24955",
#   @product="SharePoint Server",
#   @required_action=
#    "Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.",
#   @short_description=
#    "Microsoft SharePoint Server contains a code injection vulnerability that allows an authenticated attacker with Site Owner privileges to execute code remotely.",
#   @vendor_project="Microsoft",
#   @vulnerability_name="Microsoft SharePoint Server Code Injection Vulnerability">]

Requirements

ruby >= 3.0.0

Install

gem install cisa-kev

Gemfile

gem 'cisa-kev', '~> 0.1'

Copyright

See {file:LICENSE.txt} for details.

Name		Name	Last commit message	Last commit date
Latest commit History 8 Commits
.github/workflows		.github/workflows
lib/cisa		lib/cisa
spec		spec
.document		.document
.gitignore		.gitignore
.rspec		.rspec
.yardopts		.yardopts
ChangeLog.md		ChangeLog.md
Gemfile		Gemfile
LICENSE.txt		LICENSE.txt
README.md		README.md
Rakefile		Rakefile
cisa-kev.gemspec		cisa-kev.gemspec
gemspec.yml		gemspec.yml

License

postmodern/cisa-kev.rb

Folders and files

Latest commit

History

Repository files navigation

cisa-kev

Description

Features

Examples

Requirements

Install

Gemfile

Copyright

About

Topics

Resources

License

Stars

Watchers

Forks

Sponsor this project

Languages