The FIDIUS CVE-DB Gem is used to run your own vulnerability database, based on the National Vulnerability Database (NVD nvd.nist.gov). It can be used for projects that need access to vulnerability information, such as the Common Vulnerabilities and Exposures (CVE) identifiers.
It includes rake tasks to download and parse XML files provided by the NVD, to store and update them in your personal database. Furthermore it includes ActiveRecord models, migrations and example database configuration to store Vulnerabilities easily.
This gem is being developed in the context of the student project "FIDIUS" at the Universitaet Bremen; for more information about FIDIUS visit fidius.me.
Simply install this package with Rubygems:
$ gem install fidius-cvedb
Then add it to your gemfile (Rails 3)
gem 'fidius-cvedb'
gem 'mysql2' # only required when you use mysql db like in the example below
or environment.rb (prior Rails 3)
require 'rubygems'
require 'active_record'
require 'fidius-cvedb'
Please note: The CVE-DB Gem has only been tested with Linux systems and might not work with Windows.
The setup depends on the context you want to use the gem. It can be used in the context of the FIDIUS Command&Control Server, or in your own Rails app. It might access an already existing database or migrate a new one.
-
Go to your Rails-app folder and run
fidius-cvedb --standaloneorfidius-cvedb --fidius, depending on the context you are using it. For Rails versions prior 3 this will create symlinks for the Rake tasks. -
Set up a new CVE Database if you need to or configure an existing one, add the CVE Database to your database.yml accordingly. Note that it must be named "cve_db":
cve_db: adapter: mysql2 encoding: utf8 database: my_cve_database pool: 5 username: my_username password: my_password host: localhost -
When you created a new database, run
rake nvd:migrateto create the tables needed. -
When you set up your own database initialize it (note that it needs to be migrated before). Go to your Rails-app folder and run
rake nvd:initialize. This will download all available information from the NVD, parse and store it in your database. This takes about 3 hours, depending on your machine. To keep your database up-to-date runrake nvd:updateregularly, e.g. as a daily cron job. -
Now you should be able to use the NVD entries, to test this go to your console (
rails console|ruby script/console) and get an entry:$ FIDIUS::CveDb::NvdEntry.first
This package comes with an executable script. You may invoke it as
$ fidius-cvedb <option>
where option may be:
-f|--fidiusInitialize CVE-DB for Usage in FIDIUS C&C-Server-s|--standaloneInitialize CVE-DB standalone version-h|--helpShow help message-v|--versionShows the gem version
fidius-cvedb was written by
- FIDIUS Intrusion Detection with Intelligent User Support grp-fidius+cvedb@tzi.de, http://fidius.me
- in particular:
- Andreas Bender bender+fidius-cvedb@tzi.de
- Jens Färber jfaerber+fidius-cvedb@tzi.de
If you have any questions, remarks, suggestion, improvements,
etc. feel free to drop a line at the addresses given above.
You might also join #fidius on Freenode or use the contact
form on our website.
Simplified BSD License and GNU GPLv2. See also the file LICENSE.