python>> avg-audit>> 返回
项目作者: 644

项目描述 :
Arch Linux Audit Tool - checks for vulnerable packages installed against security.archlinux.org
高级语言: C
项目地址: git://github.com/644/avg-audit.git
创建时间: 2019-06-26T01:08:15Z
项目社区:https://github.com/644/avg-audit
开源协议:MIT License
下载


Arch Vulnerability Group auditor

avg-audit will check currently installed packages on Arch Linux based systems against https://security.archlinux.org/issues/. This is very similar to pacaudit and archsecure and arch-audit, however it allows for custom formatting of the fields and has all the same features (except the nagios plugin in pacaudit, which I plan to add). It has a couple of other minor improvements as well, such as testing against all known security vulnerabilities including fixed ones, which could be useful in case of outdated software. I also have other features in mind like running as a service, or alongside an update utility.

The C version is a work in progress.

Installation

First get the makefile

  1. mkdir -p avg-audit; cd $_; wget https://raw.githubusercontent.com/644/avg-audit/master/Makefile

To install the bash script

  1. make shell && sudo make install

To install the C program

  1. make && sudo make install

Updating/Uninstalling

To uninstall, run this in the avg-audit directory

  1. sudo make clean

To check for updates, run this in the avg-audit directory

For the bash script

  1. make shell && sudo make install

For the C program

  1. make && sudo make install

Usage

For the bash script

  1.     -h    Show this help message
  2.     -a    Show all fields
  3.           This is equal to -f name,packages,status,severity,type,affected,fixed,ticket,issues
  4.     -f    Custom format, e.g. -f packages,affected,severity
  5.     -v    Show all vulnerable packages, not just ones on the system
  6.     -c    Colorize output
  7.     -t    Test against all packages, including fixed ones
  8.     -l    Link to the full AVG URL
  9.     -n    Do not count vulnerable/listed packages at the end
  10.     -b    Alternative database location
  12. Fields:
  13.     name        Link to the Arch Vulnerability Group number
  14.     packages    List of the affected packages
  15.     status      Shows whether it is fixed or not
  16.     severity    From Critical, High, Medium, to Low
  17.     type        Short description on the type of attack
  18.     affected    Version number of the affected package
  19.     fixed       Version number of the fixed package
  20.     ticket      Ticket number for bugs.archlinux.org
  21.     issues      List of related CVEs

For the C program

  1. avg-audit -a -l -c -n -t

Dependencies

jq, curl, pacman, yay, yajl, alpm_octopi_utils

Example

example.png

License

MIT