Skip to main content

CVE research CLI — query Shodan's CVE database with advanced filtering and export.

Project description

CVEQuery

cvequery

Python Version License Version

Powerfull CVE research tool for security researchers and bug bounty hunters. Query Shodan's CVE database with advanced filtering and export capabilities.

Quick Start

# Install
pipx install cvequery

# Single CVE lookup
cvequery -c CVE-2021-44228

# Product vulnerability search
cvequery --product-cve nginx --severity critical

# KEV (Known Exploited Vulnerabilities) only
cvequery --is-kev --limit-cves 10

Core Commands

CVE Lookup

# Single CVE
cvequery -c CVE-2021-44228

# Multiple CVEs (parallel processing)
cvequery -mc "CVE-2021-44228,CVE-2023-44487"

# Detailed view (no truncation)
cvequery -c CVE-2021-44228 -d

Product Research

# Find vulnerabilities in specific products
cvequery --product-cve nginx
cvequery --product-cve "windows_10" -lcv 10

## Find Find vulnerabilities in windows builds
cvequery --product-cve "windows_11_25h2" -s high

# Filter by severity
cvequery --product-cve django --severity critical,high

Advanced Filtering

# KEV vulnerabilities only
cvequery --is-kev --limit-cves 20

# Date range filtering
cvequery --product-cve log4j --start-date 2021-01-01 --end-date 2021-12-31

# Sort by exploitation probability
cvequery --product-cve nginx --sort-by-epss

Output Formats

Display Options

# Compact format (one line per CVE)
cvequery --product-cve apache --format compact

# Summary format (statistical analysis)
cvequery --product-cve apache --format summary

# Custom fields only
cvequery -c CVE-2021-44228 --fields cve_id,cvss,epss,kev

# Exclude specific fields
cvequery -c CVE-2021-44228 --fields-exclude summary,references

Export Formats

# JSON for automation
cvequery --product-cve nginx --json results.json

# CSV for analysis
cvequery --is-kev --csv kev_report.csv

# STIX for threat intelligence
cvequery -c CVE-2021-44228 --stix intel.json

Installation

# Recommended
pipx install cvequery

# Alternative
pip install cvequery

Key Features

  • KEV Integration - Focus on actively exploited vulnerabilities
  • EPSS Scoring - Exploitation probability assessment
  • Parallel Processing - Fast multiple CVE lookups
  • Rich Filtering - Severity, date range, product-based
  • Export Options - JSON, CSV, YAML, XML, STIX 2.1
  • Field Customization - Show/hide specific data fields

Documentation

Contributing

Take a look at the Contributing Page.

📬 Contact

X

License

MIT License

Project details


Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

cvequery-1.0.7.tar.gz (66.8 kB view details)

Uploaded Source

Built Distribution

If you're not sure about the file name format, learn more about wheel file names.

cvequery-1.0.7-py3-none-any.whl (37.4 kB view details)

Uploaded Python 3

File details

Details for the file cvequery-1.0.7.tar.gz.

File metadata

  • Download URL: cvequery-1.0.7.tar.gz
  • Upload date:
  • Size: 66.8 kB
  • Tags: Source
  • Uploaded using Trusted Publishing? No
  • Uploaded via: twine/6.2.0 CPython/3.14.5

File hashes

Hashes for cvequery-1.0.7.tar.gz
Algorithm Hash digest
SHA256 1945fc8db2b08eefa9c852cc2804c96e3154da29ac5783cbea86a66d95a5326c
MD5 5c31057591bb59032e9db333da83a1ca
BLAKE2b-256 c09c985047069accfc0e7421d68656ef6bb591f6d1155890ec74038aa9765f9c

See more details on using hashes here.

File details

Details for the file cvequery-1.0.7-py3-none-any.whl.

File metadata

  • Download URL: cvequery-1.0.7-py3-none-any.whl
  • Upload date:
  • Size: 37.4 kB
  • Tags: Python 3
  • Uploaded using Trusted Publishing? No
  • Uploaded via: twine/6.2.0 CPython/3.14.5

File hashes

Hashes for cvequery-1.0.7-py3-none-any.whl
Algorithm Hash digest
SHA256 680d8104a7cda148843e4a64d9a3050789e792d76465d1d5bd49f8da3e4a1dcb
MD5 e670ca52890f8f043ad826a85fe2805c
BLAKE2b-256 63d525add59974218d28f1072c48fe0686d3df18e1ca1a0a7d07f43733694139

See more details on using hashes here.

Supported by

AWS Cloud computing and Security Sponsor Datadog Monitoring Depot Continuous Integration Fastly CDN Google Download Analytics Pingdom Monitoring Sentry Error logging StatusPage Status page