crash.software
Projects
Pull Requests
Issues
Builds
Sirius
Code
Files
Commits
Branches
Tags
Pull Requests
Code Comments
Code Compare
Issues
Builds
Statistics
Child Projects
cra.sh
RESTful API
Projects STRLCPY Sirius Files
🤬
6314c6ba
ROOT /
API /
..
API Loading last commit info...
bin
lib
scanner
tmp
utils
.DS_Store
LICENSE
README.md
Sirius-Scan
discover-vulners-cve.py
go.mod
go.sum
lib.go
main
main.go
nvd-cpematch-consumer
nvd-cpematch-consumer.go
nvd-cve-consumer.go
sirius-api.exe
sirius-api.go
testdata
README.md

Sirius-Scan

Dev Notes

  • Plugins vs Engines?

    • One off vs interchangable system

  • Engines

    • Vulnerability Correlation Engine
      • Vulners
      • NVD
    • Port Scanning Engine
      • Nmap
Scanner Methodology

  • Discover Live Systems

    • Nmap Discovery Custom -PS

  • Discover Ports

    • Nmap default

  • Discover Service Version

    • Nmap -sV
      • Split port/service/banner/version
      • Correlate into salient options
      • Try match to global services file
      • ID protocol/service/application => iterate on application if stack such as web
    • Nmap --script discovery
    • Custom discovery scripts

  • Vulnerability Correlation

    • Vulners (deconflict duplicate CVEs)

  • Vulnerability Identification

    • Nmap --script vuln (Sirius profiles long term)

  • Authenticated Checks

    • Vulners Agent?
    • Windows WUA???
    • NSE authenticated script support

  • Reporting

Please wait...
Page is in error, reload to recover