Align AutomaticallyModeledVulnerabilities with CVSS 3.0

mal-lang / coreLang

A probabilistic attack simulation language for the (abstract) IT domain

https://mal-lang.org/coreLang/

Other

10 stars 12 forks source link

Align AutomaticallyModeledVulnerabilities with CVSS 3.0 #16

Closed skatsikeas closed 3 years ago

skatsikeas commented 4 years ago

We need to find a way to align all the properties of CVSS 3.0 in the AutomaticallyModeledVulnerabilities because the current design is not so straightforward and splits properties among Vulnerability and Exploit but are truly related only with Vulnerability.

Notes:

CVSS(based)vulnerabilities (this name should be used if we eventually fully support CVSS)

skatsikeas commented 3 years ago

This is moving forward, eventually, with the power of https://github.com/andrewbwm. Soon we will have a new version of the language with more powerful and parameterizable vulnerabilities and exploits!

skatsikeas commented 3 years ago

With the new release https://github.com/mal-lang/coreLang/releases/tag/v0.2.0 this is now done!