Skip to main content
Join the official 2019 Python Developers SurveyStart the survey!

Simple package that given a CVE desription tries to extract useful semantics from it using NLP

Project description

CVE analyzer

This project aims to extract from a collection of vulnerabilities report expressed in common English language various semantic information. These semantic information are encoded and retrieved using Name Entity recognition (NER) on the description and currently the available labels are the following:

  • FUNCTION: Vulnerable function name.
  • VERSION: Vulnerable version of the target program.
  • SOURCECE: Path to the source code that contains the vulnerable function/functions.
  • DRIVER: Driver that we the attacker needs to interact with to trigger the exploit.
  • STRUCT: Malformed struct that contains the bug.
  • VULNERABILITY: Type of the vulnerability (e.g. buffer overflow, etc...).
  • CAPABILITY: Capability that the attacker gains after a successful exploitation of the vulnerability (e.g. remote code execution, etc...).

Dataset

The dataset on which the initial state of the project has been developed and tested on is the list of Common Vulnerability Exposure (CVE) regarding the Linux kernel for the years 2017 and 2018 (for this first implementation). The dataset can be found on the website CVE detail

The dataset is formatted as a Comma Separated Values (CSV) but it has been simplified from it's original version and only the description fields has been taken into account.

Installation

Install the project and al its dependencies with:

pip install cve_analyzer

Project details


Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Files for cve-analyzer, version 0.0.4
Filename, size File type Python version Upload date Hashes
Filename, size cve_analyzer-0.0.4-py2.py3-none-any.whl (12.1 MB) File type Wheel Python version py2.py3 Upload date Hashes View hashes
Filename, size cve_analyzer-0.0.4.tar.gz (12.1 MB) File type Source Python version None Upload date Hashes View hashes

Supported by

Elastic Elastic Search Pingdom Pingdom Monitoring Google Google BigQuery Sentry Sentry Error logging AWS AWS Cloud computing DataDog DataDog Monitoring Fastly Fastly CDN SignalFx SignalFx Supporter DigiCert DigiCert EV certificate StatusPage StatusPage Status page