.

Vulnerability Alerting options

<<

eyenit0

User avatar

Jr. Member
Jr. Member

Posts: 52

Joined: Wed Sep 01, 2010 2:17 pm

Post Wed Sep 04, 2013 10:48 am

Vulnerability Alerting options

Hi all,

Does anyone have any recommendations on how to go about getting relevant vulnerability alerts for software in a particular environment? I get weekly US-CERT vulnerability bulletins and monitor plenty of other vulnerability feeds, but am looking for something where I can specify the products that I need to watch and only receive alerts for those. Not looking for a vulnerability scanner(we have plenty of those) or a full vulnerability management suite, per se, just a way to filter out newly published vulnerabilities that affect software in use on our network.

I'm aware of some commercial service (VUPEN, etc), but am looking for a way to do it for free or low cost. Ideally we would be able to configure and manage it in-house, since we're not keen on providing all of our software names/versions to outside entities.

The only thing I've come up with so far is using RSS feeds from cvedetails.com, which lets you create RSS feeds for specific software/versions, and either import those into an excel sheet or some sort of server-side RSS aggregator that is viewable by me both me and my colleagues.

Anyone have any novel ways that they do it, or can think of something I have overlooked?
Thanks!
<<

termight

User avatar

Newbie
Newbie

Posts: 26

Joined: Tue Aug 21, 2007 5:50 pm

Location: MARS

Post Sat Sep 14, 2013 3:14 am

Re: Vulnerability Alerting options

@eyenit0, why don't you write a script in python,ruby or bash to track urls of these known sites or parse variable to filer interesting data like software version, release dates etc that match the version or software you have. ;D

Return to Incident Response

Who is online

Users browsing this forum: No registered users and 0 guests

.
Powered by phpBB® Forum Software © phpBB Group.
Designed by ST Software