A client to gather vulnerability-related information from the Fediverse.

Navigation

Verified details

These details have been verified by PyPI
Maintainers
Avatar for cedricbonhomme from gravatar.com cedricbonhomme

Unverified details

These details have not been verified by PyPI
Project links
Meta
  • License: GNU General Public License v3 or later (GPLv3+) (GPL-3.0-or-later)
  • Author: Cédric Bonhomme
  • Tags vulnerability, cve, fediverse, mastodon
  • Requires: Python <4.0, >=3.10
Classifiers

Project description

FediVuln

A client to gather vulnerability-related information from the Fediverse.

Usage

Installation

$ pipx install FediVuln
$ export FEDIVULN_CONFIG=~/.FediVuln/conf.py

Set the configuration variables in conf.cfg as appropriate for your environment. An example is provided.

Register your application

$ poetry shell
$ FediVuln-Register

This script uses OAuth in order to retrieve the access token. This is achieved in several steps.

  • Register the application with Mastodon instance, a including all necessary scopes
  • Instantiate Mastodon client with client credentials
  • Log in - Generate authorization URL with the exact same scopes
  • Once the user authorizes, prompt for the authorization code
  • Use the authorization code to retrieve the access token, with the same scopes

You only have to execute it once.

Streaming

$ poetry shell
$ FediVuln-Stream --user --sighting

Using the --sighting argument, detected vulnerability IDs will be recorded in Vulnerability Lookup as sightings.

Publishing

$ python publish.py

License

FediVuln is licensed under GNU General Public License version 3

Copyright (c) 2024 Computer Incident Response Center Luxembourg (CIRCL)
Copyright (C) 2024 Cédric Bonhomme - https://github.com/cedricbonhomme

Project details

Verified details

These details have been verified by PyPI
Maintainers
Avatar for cedricbonhomme from gravatar.com cedricbonhomme

Unverified details

These details have not been verified by PyPI
Project links
Meta
  • License: GNU General Public License v3 or later (GPLv3+) (GPL-3.0-or-later)
  • Author: Cédric Bonhomme
  • Tags vulnerability, cve, fediverse, mastodon
  • Requires: Python <4.0, >=3.10
Classifiers

Release history Release notifications | RSS feed

0.4.0

0.3.0

0.2.0

0.1.1

This version

0.1.0

Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

fedivuln-0.1.0.tar.gz (17.1 kB view details)

Uploaded Source

Built Distribution

fedivuln-0.1.0-py3-none-any.whl (32.0 kB view details)

Uploaded Python 3

File details

Details for the file fedivuln-0.1.0.tar.gz.

File metadata

  • Download URL: fedivuln-0.1.0.tar.gz
  • Upload date:
  • Size: 17.1 kB
  • Tags: Source
  • Uploaded using Trusted Publishing? No
  • Uploaded via: poetry/1.8.4 CPython/3.11.4 Linux/6.1.0-26-amd64

File hashes

Hashes for fedivuln-0.1.0.tar.gz
Algorithm Hash digest
SHA256 8541a368f0ac50edae7de0e7e36a46e59caa3e99d99ffe0b9a9919443ff1863c
MD5 755437b8ed8236d8faf3e2eef912d5fa
BLAKE2b-256 60e8ce04fa8608f58bd530ca4a13dd15c13db8407271024562b2fb7f19a7c082

See more details on using hashes here.

File details

Details for the file fedivuln-0.1.0-py3-none-any.whl.

File metadata

  • Download URL: fedivuln-0.1.0-py3-none-any.whl
  • Upload date:
  • Size: 32.0 kB
  • Tags: Python 3
  • Uploaded using Trusted Publishing? No
  • Uploaded via: poetry/1.8.4 CPython/3.11.4 Linux/6.1.0-26-amd64

File hashes

Hashes for fedivuln-0.1.0-py3-none-any.whl
Algorithm Hash digest
SHA256 414e00fe194879106ca25b8fe27de59318017e4d48556be84a062bbf1048e743
MD5 d90ab3decec2904c3c5e0733c1163f46
BLAKE2b-256 70adb3c0202f1dfb842442050f854c77b33f99c8b8cf6ee0259bfabc5375b403

See more details on using hashes here.

Supported by

AWS AWS Cloud computing and Security Sponsor Datadog Datadog Monitoring Fastly Fastly CDN Google Google Download Analytics Microsoft Microsoft PSF Sponsor Pingdom Pingdom Monitoring Sentry Sentry Error logging StatusPage StatusPage Status page