From 95dfbe533c1d8c767783627b9b2fcb8c0f53446d Mon Sep 17 00:00:00 2001
From: Brendan McDevitt <brendan@mcdevitt.tech>
Date: Sat, 21 May 2022 10:16:23 -0500
Subject: [PATCH] added more notes on cisas advisory format

---
 doc/cna_readme_notes/cnas_with_html_advisories.md | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/doc/cna_readme_notes/cnas_with_html_advisories.md b/doc/cna_readme_notes/cnas_with_html_advisories.md
index 396455e..ae5a75c 100644
--- a/doc/cna_readme_notes/cnas_with_html_advisories.md
+++ b/doc/cna_readme_notes/cnas_with_html_advisories.md
@@ -525,7 +525,9 @@ CNA json lists https://www.google.com/about/appsecurity/research/ which redirect
 ### Advisory
 https://www.cisa.gov/uscert/ics/alerts 
 #### Notes
-They offer an rss feed to get the index of advisories
+They offer an rss feed to get the index of advisories. Each alert has different headings depending on the type, but there are some common ones:
+Summary heading has a table in it which seems to have info about the vuln. that table has these three headings: 'vulnerability_type, remotely_exploitable, impact'
+Mitigation heading as well seems to be common across alerts/advisories.
 #### Captured Data Potential From Advisory
 
 ## Cyber Security Works Pvt. Ltd.