Skip to content

Illuminate Vulnerability Intelligence for own and third-party attack surfaces #39

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
aeetos merged 8 commits into from
Sep 15, 2021
Merged

Illuminate Vulnerability Intelligence for own and third-party attack surfaces #39

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
8 commits
Select commit Hold shift + click to select a range
2de269d
Vuln intel API support in core library and analyzer objects. Helper m…
aeetos Sep 13, 2021
66ebea1
Move Illuminate analyzer code into a package.
aeetos Sep 13, 2021
203ff74
Refactor analyzer Illuminate classes into separate files.
aeetos Sep 13, 2021
260ed9c
Vulnerabilty report articles, with list of impacted third-parties.
aeetos Sep 15, 2021
872cea4
Add ability to search OSINT articles by keyword. Add osint_articles p…
aeetos Sep 15, 2021
6407cbe
Add articles property to CVE and a few pass-thru properties to easily…
aeetos Sep 15, 2021
144bcea
Update example notebook for ASI with vuln intel.
aeetos Sep 15, 2021
630d593
Rename example ASI notebook.
aeetos Sep 15, 2021
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
27 changes: 27 additions & 0 deletions CHANGELOG.md
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,5 +1,32 @@
# Changelog

## v2.5.5

#### Enhancements

- Support for new RiskIQ Illuminate Vulnerability Intelligence API endpoints in core API library.
- New `cves` property of AttackSurface objects finds vulnerabilities impacting assets within that
attack surface. Works identically for the primary (your own) attack surface and third-party
attack surfaces.
- New `AttackSurfaceCVEs` record list to contain a list of `AttackSurfaceCVE` objects, with properties
to access the vulnerability report, RiskIQ priority score, and list of impacted assets.
- New `VulnArticle` object to provide details on a CVE and discover the list of third-party vendors
with assets impacted by the vuln. Custom views in the article's `to_dataframe()` method render
dataframes focused on article references, component detections, and third-party impacts.
- New helper method `analyzer.AttackSurface()` to directly load an attack surface. Works without params to load
the main attack surface, with an ID to load a third-party vendor attack surface by ID, or with a string
to find an attack surface by vendor name.
- Re-organized Illuminate-specific code in the `analyzer` module into distinct files located under a
subpackage. Existing imports in client code should not be impacted.


#### Pull Requests

- Publishes pull request #38 "Remove ez_setup dependancy."




## v2.5.4

#### Enhancements
Expand Down
Loading