Giter Site home page Giter Site logo

info2cpe's Introduction

What's info2cpe

info2cpe is a library that try to convert a simple string (a service banner, for example) into a CPE value. The library follows the CPE v2.3 specifications.

For more information, please visit the official website for CPE, maintained by MITRE: http://cpe.mitre.org/

CPE specification logo

How does it work?

info2cpe use different heuristic and mathematical methods to try to match a simple text into the an approximated CPE value.

** A lot of times, the library can't find an exact match with the CPE database. **

Usage

You can use the info2cpe as a library and as a command line tool:

Command line

Diplay the help:

python info2cpe.py -h
usage: info2cpe.py [-h] [-t INPUT_TEXT] [-c CPE_FILE] [--update]

info2cpe try to convert any string into CPE

optional arguments:
  -h, --help            show this help message and exit
  -t INPUT_TEXT, --text INPUT_TEXT
                    text where looking for the CPE.
  -c CPE_FILE, --cpe-db CPE_FILE
                    cpe database
  --update              update cpe database

Update the CPE database:

python info2cpe.py --update
[*] Downloading CPE database (this can take some time).
[*] Loading XML CPE file.
[*] Converting XML to CPE database.
[*] Saving CPE database in 'cpe.db' file.
[*] Done!

Looking for a CPE from command line:

python info2cpe.py -t "Microsoft IIS httpd 7.5"
[*] Starting analysis...
[*] Analysis time: 0.552829027176
[*] Results:

|----
| CPE: cpe:/a:microsoft:iis:7.5
| Name: Microsoft Internet Information Services (IIS) 7.5
| Probability: 100%
|____

|----
| CPE: cpe:/a:microsoft:iis:7.0
| Name: Microsoft Internet Information Services (IIS) 7.0
| Probability: 98%
|____

|----
| CPE: cpe:/a:microsoft:iis:6.0
| Name: Microsoft Internet Information Services (IIS) 6.0
| Probability: 90%
|____

As a library

Looking for a CPE from command python code:

>>>from api import search_cpe
>>>banner="Microsoft IIS httpd 7.5"
>>>result=search_cpe(banner)
>>>print result
[(100, 'cpe:/a:microsoft:iis:7.5', 'Microsoft Internet Information Services (IIS) 7.5'), (98, 'cpe:/a:microsoft:iis:7.0', 'Microsoft Internet Information Services (IIS) 7.0'), (90, 'cpe:/a:microsoft:iis:6.0', 'Microsoft Internet Information Services (IIS) 6.0')]

Acknowledgements

Contribute

Any kind of contribution is wellcome. Feel free to make a fork and send me your changes.

info2cpe's People

Contributors

cr0hn avatar mariovilas avatar

Stargazers

avatar ajt avatar Daniel10 avatar avatar Douglas S. Santos avatar soap avatar avatar avatar avatar Mahin Chan avatar avatar Aruneko avatar Daniel Buentello avatar Michael Roytman avatar Andrea De Dominicis avatar Jordi Arnavat Colom avatar Endrigo Antonini avatar Aukjan van Belkum avatar Alexandre Dulaunoy avatar Renato Rodrigues avatar Alexander Knorr avatar avatar

Watchers

ajt avatar avatar Andre Gironda avatar Roberto Abdelkader Martínez Pérez avatar Alejandro Galindo avatar Jordi Arnavat Colom avatar Tariq avatar avatar Douglas S. Santos avatar avatar

Forkers

clebeer pombredanne dbuentello esaricicek cylera-paul chubbymaggie inksong yuvaleros rikirc fuchsia74 dogasantos ishideo

info2cpe's Issues

Incorrect output for test example on Windows python 2.7

I'm trying to start a test example on Windows10x64 python 2.7,
but have the strange output (the same incorrect output after installing python-Levenshtein, before and after updating database):

D:\wik\info2cpe-master>c:\Python27\python.exe info2cpe.py -t "Microsoft IIS httpd 7.5"
c:\Python27\lib\site-packages\fuzzywuzzy\fuzz.py:11: UserWarning: Using slow pure-python SequenceMatcher. Install python-Levenshtein to remove this warning
  warnings.warn('Using slow pure-python SequenceMatcher. Install python-Levenshtein to remove this warning')
[*] Starting analysis...
[*] Analysis time: 0.69000005722
[*] Results:

   |----
   | CPE: cpe:/a:osirix-viewer:osirix:2.7.5
   | Name: OsiriX-Viewer OsiriX 2.7.5
   | Probability: 100%
   |____

   |----
   | CPE: cpe:/a:cloudera:cloudera_manager:3.7.5::enterprise
   | Name: Cloudera Cloudera Manager 3.7.5 Enterprise Edition
   | Probability: 100%
   |____

   |----
   | CPE: cpe:/a:hp:openview_network_node_manager:7.53:-:solaris
   | Name: HP OpenView Network Node Manager 7.53 Solaris
   | Probability: 100%
   |____

Why is it so?

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. 📊📈🎉

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google ❤️ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.