Skip to content

Simple REST-style web service for the CVE searching

License

Notifications You must be signed in to change notification settings

AgoraSecurity/cve_server

 
 

Repository files navigation

CVEServer

Simple REST-style web service for the CVE searching.

Requirements

Getting Started

Install the CVE Server

You must have running ruby, git, mongodb and nginx in your local machine.

curl --ssl -s https://raw.githubusercontent.com/SpiderLabs/cve_server/master/scripts/install.sh | bash -

Using the API

Additional Information

Other installation method

  1. Clone our repository.
git clone https://github.com/SpiderLabs/cve_server.git
  1. Install the ruby dependencies.
bundle install
  1. Download the raw data from the National Vulnerability Database. The supported NVD reports are XML 2.0 (by default) and JSON 1.0 files.
./bin/nvd_downloader

or

./bin/nvd_downloader -f json
  1. Configure your database.
vi config/database.yml
  1. Create and populate the database for you environment.
RACK_ENV=development ./bin/seed

or

RACK_ENV=development ./bin/seed -f json

The -f flag with the json option will populate the database using the experimental JSON reports from NVD and it renames the score key to base_score in the cvss (v2) field, it also includes the cvssv3 information and some changes for the links in the references field.

  1. Start the server.
RACK_ENV=development puma

License

CVEServer is released under the MIT License

About

Simple REST-style web service for the CVE searching

Resources

License

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published

Languages

  • Ruby 95.9%
  • Shell 3.5%
  • Dockerfile 0.6%