This is a rails/postgres application that will serve json data from the following data sources:
- Cves
- Cpes
- CNA security advisories
- GHSA Github security advisories
- Github repositories that track public exploits for cves.
- A list of github usernames github API data.
| app | ||
| bin | ||
| config | ||
| db | ||
| lib | ||
| log | ||
| public | ||
| storage | ||
| test | ||
| tmp | ||
| .gitignore | ||
| .ruby-version | ||
| config.ru | ||
| docker-compose.yml | ||
| Dockerfile | ||
| entrypoint.sh | ||
| Gemfile | ||
| Gemfile.lock | ||
| package.json | ||
| Rakefile | ||
| README.md | ||
data_importer
This is a rails/postgres application that will serve json data from the following data sources:
- Cves
- Cpes
- CNA security advisories
- GHSA Github security advisories
- Github repositories that track public exploits for cves.
Check the HTTP API section below for specific endpoints that can be queried via http.
Supported data models:
Cvedata from cve_list github repo.Cpedata from nvd 2.2 format.Cnadata from mitre.GithubPocdata from nomi-sec github repo.GithubAdvisoriesdata from github_advisories_database github repo.InthewildCveExploitdata from inthewild.io exploited feed.TrickestPocCvedata from trickest github repo.CvemonCvedata from ARPSyndicate github repo.
Initial Setup
Build container
docker-compose build
Database creation and seeding initial data
docker-compose run web rake db:create
docker-compose run web rake db:migrate
docker-compose run web rake db:seed
Launch Pry console
docker-compose run web rails console
HTTP API
For now unauthenticated api over localhost:3000 until I put in some basic token auth. All response data is json rendered.
Cves
get "/cves", to: "cves#index"
get "/cves/:cve_id", to: "cves#show"
get "/cves/years/:year", to: "cves#show_year"
Cpes
get "/cpes", to: "cpes#index"
get "/cpes/:id", to: "cpes#show"
Cnas
get "/cnas", to: "cnas#index"
get "/cnas/:id", to: "cnas#show"
get "/cnas/cna/:cna_id", to: "cnas#show_for_cna"
GithubAdvisories
get "/github_advisories", to: "github_advisories#index"
get "/github_advisories/:ghsa_id", to: "github_advisories#show"
GithubPocs
get "/github_pocs", to: "github_pocs#index"
get "/github_pocs/:id", to: "github_pocs#show"
get "/github_pocs/cve/:cve_id", to: "github_pocs#show_for_cve"
get "/github_pocs/years/:year", to: "github_pocs#show_year"
InthewildCveExploits
get "/inthewild_cve_exploits", to: "inthewild_cve_exploits#index"
get "/inthewild_cve_exploits/:cve_id", to: "inthewild_cve_exploits#show"
TrickestPocCves
get "/trickest_poc_cves", to: "trickest_poc_cves#index"
get "/trickest_poc_cves/:id", to: "trickest_poc_cves#show"
get "/trickest_poc_cves/cve/:cve_id", to: "trickest_poc_cves#show_for_cve"
get "/trickest_poc_cves/years/:year", to: "trickest_poc_cves#show_year"
CvemonCves
get "/cvemon_cves", to: "cvemon_cves#index"
get "/cvemon_cves/:id", to: "cvemon_cves#show"
get "/cvemon_cves/cve/:cve_id", to: "cvemon_cves#show_for_cve"
get "/cvemon_cves/years/:year", to: "cvemon_cves#show_year"