An IP to vulnerability utility
Project description
ip2vulns
An IP to vulnerabilities utility. This tool is able to retrieve information related to given IP(s). This tool takes advantage of Shodan InternetDB API.
For CVE information, this tool retrieve CVE information from NIST NVD.
Disclaimer
By using this, you also agree to the term of use of the APIs used.
Installation
Using the following pip command to install: pip install ip2vulns
Usage
usage: ip2vulns [-h] [-i INTERNETDB [INTERNETDB ...]] [-s CVSS] [-o OUT] [--ho] [-v]
IP 2 vulneribility tools
options:
-h, --help show this help message and exit
-i INTERNETDB [INTERNETDB ...], --internetdb INTERNETDB [INTERNETDB ...]
Query information from https://internetdb.shodan.io/
support multiple ip and cidr, separate using space, e.g. -i 8.8.8.8 51.83.59.99 192.168.0.0/24
if no database if specified, use ./databases/internetdb.db
-s CVSS, --cvss CVSS Enable cvss score filter, required a number
If 0 is given, targets found with no CVE information will be filtered out. And all CVEs will be checked.
When 0 is given, the process can be slow if huge amount of CVEs are founded. Not Recommend to pass 0 in.
-o OUT, --out OUT Define output file, default print to stdout
Available option: stdout (default), csv, json
For csv: please specify filename
For json: a directory out_json will be created
--ho Output hostnames only for scan result.
This option DOES NOT apply to -d/--database option
-v, --version Print current version
Features
The scan operation will be splitted into several groups. Each group contains maximum 256 IPs.
Output to file
When no -o/--out
option is provided, results are printed to stdout.
When output to csv file, please specify the filename.
For example, ip2vulns -i 1.1.1.1 -o 1.1.1.1.csv
, the output file will be 1.1.1.1.csv
.
When output to json file, a directory out_json
will be created. Results will be stored using <ip>.json
.
For example, ip2vulns -i 1.1.1.1 -o json
, then a directory out_json
will be created. And the output filename will be 1.1.1.1.json
.
Local CVE Database
Another project named py-cvedb is used in this project. It is highly recommended check out that project and init a local database first before using this.
NIST NVD Key (Optional, but recommend)
By setting environment variable NVD_KEY
for lower delay of NIST NVD api.
Request a key
Project details
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.