Debian CVE Scanner (cve-scan)

Scan CVE vulnerabilities in Debian systems.

Feature

• Bash script;
• Debian package;
• Use Debian CVE database;
• Create local database indexed by package name, using JSON files;
• Terminal colors;
• Progress bar;
• Show link to Debian CVE report;
• Suggest packages to be update;
• Can to show open CVEs, resolved CVEs and packages to be updated;
• Command line interface;
• Show text (no colors), for store reports in text files.

Installation

1. Download package from release (https://gitlab.com/dhbmarcos/cve-scan/-/releases/v0.2.1)

2. Install package

    apt install ./cve-scan-0.2.1.deb
   

Usage

su;
cve-scan;

cve-scan [ options ]

Options

–help

Show help.

–no-parse-packages

Do not parse packages. Used for only download CVE data from Debian server.

–no-show-cve

Do not CVE link in open CVEs.

–no-show-open

Do not packages with only open CVEs.

–no-show-resolved

Do not packages with only resolved CVEs.

–no-show-to-update

Do not packages with only to be updated.

–no-update-cve-data

Do not download CVE data from Debian server.

–plain-text

Do not show color and progress bar to save result in text file.

–version

Show application version.

Support

Open a issue Gitlab page (https://gitlab.com/dhbmarcos/cve-scan/-/issues), for bugs, suggestions or doubts.

Project Status

This project use STRL - Simplest Technology Readiness Level. This TRL is compatible with Debian Suites Workflow.

The current level is unstable.

Things defined, but they can change.

See more in https://dhbmarcos.gitbook.io/simplest-technology-readiness-level.

Roadmap

1. Stable script;
2. Create package installation;
3. Publish.

Contributing

This project is open source. You can contribute sending merge requests, issues or publishing. In advance, thank you for the submissions.

Build debian package

Run script to make package:

chmod +x make-debian-package.sh;
./make-debian-package.sh;

License

Copyright: Copyright (C) 2022 D. H. B. Marcos

This program is free software: you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation, either version 3 of the License, or (at your option) any later version.

This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details.

You should have received a copy of the GNU General Public License along with this program. If not, see https://www.gnu.org/licenses/