Provide a command line interface to guess the cpe from a software/product name - Githubissues

cve-search / cpe-guesser

Tool to guess CPE name based on common software name

https://cve-search.github.io/cpe-guesser/

BSD 2-Clause "Simplified" License

81 stars 14 forks source link

Provide a command line interface to guess the cpe from a software/product name #1

Closed adulau closed 1 day ago

adulau commented 3 years ago

Provide a command line interface to guess the cpe from a software/product name. CPEs are not always available from vendors and there is a manual work to find the correct CPE. The idea is to provide a small software to guess the most probable CPE out of a vendor/product string.

Some ideas: https://github.com/fkie-cad/iva/tree/master/matching

github-actions[bot] commented 3 years ago

Stale issue message

jayateertha043 commented 3 years ago

Yes this feature would be very much useful . @adulau

P-T-I commented 3 years ago

@adulau I think we should transfer this issue to the cpe-guesser repo, right?

adulau commented 3 years ago

Yes that's correct.

adulau commented 3 years ago

First super alpha version. Released.

[x] Add a public server instance
[ ] Include the interface in cve-search and CveXplore to ease search

P-T-I commented 3 years ago

I'll take the action to include the interface in CveXplore

P-T-I commented 1 year ago

@adulau is this repo moving towards the NIST API as well?

adulau commented 7 months ago

Yep indeed. I hope they will the CPE available and updated (especially with the current state of the NVD part).

adulau commented 1 day ago

Command line implemented sometime ago https://github.com/cve-search/cpe-guesser/blob/main/bin/lookup.py