sjvermeu / cvechecker

Command-line utility to scan the system and report on potential vulnerabilities, based on public CVE data
GNU General Public License v3.0
258 stars 68 forks source link

Can you describe the general process of this so that it could be ported to Windows? #41

Open volomike opened 5 years ago

volomike commented 5 years ago

I see that this is a UNIX/Linux thing. However, the CVE database does support information on Windows OS vulnerabilities. Can you describe a 1000ft outline of how this works so that it can be ported into a Windows OS scanner?

sjvermeu commented 5 years ago

Hi Mike,

You might want to read up on https://rawgit.com/sjvermeu/cvechecker/master/docs/design-architecture.html for this. While the document isn't fully finished, the logical design choices are described in there and might already be sufficient for this particular case.

Wkr, Sven Vermeulen

On Mon, Feb 11, 2019 at 5:37 PM Mike McKee notifications@github.com wrote:

I see that this is a UNIX/Linux thing. However, the CVE database does support information on Windows OS vulnerabilities. Can you describe a 1000ft outline of how this works so that it can be ported into a Windows OS scanner?

— You are receiving this because you are subscribed to this thread. Reply to this email directly, view it on GitHub https://github.com/sjvermeu/cvechecker/issues/41, or mute the thread https://github.com/notifications/unsubscribe-auth/AAU4qwGwtQxGDAyBuh3eVF48RjodyAnsks5vMZw6gaJpZM4a0lFY .