All Apps and Add-ons
×

Join the Conversation

Without signing in, you're just watching from the sidelines. Sign in or Register to connect, share, and be part of the Splunk Community.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question

Fetch vulnerability information from the national vulnerability database

NoSpaces
Contributor
‎08-16-2024 04:28 AM

Hello to everyone!
I am in the process of trying to fetch vulnerability information from the national vulnerability database.
I found an app that can do this task via API - this is NVD-CVE-Fetcher-App.
The app link is here:
https://splunkbase.splunk.com/app/7121?ref=hub.metronlabs.com

The problem is that using NAT isn't allowed in our organization, so I was forced to use a proxy.
I tried to use a system proxy, but the application ignored the system setting and tried to access the API URL directly.
So, two questions:
1. Did anyone try to use the NVD-CVE-Fetcher-App in the proxy-acess scenario?
2. Did anyone resolve a similar task using other approaches? For example, another app or handmade script

Labels (1)
Labels
0 Karma
Reply

PickleRick
SplunkTrust
SplunkTrust
‎08-16-2024 05:46 AM

Most probably (I don't know this app so I'm writing from general experience with several apps) proxy server must be explicitly defined for a given modular input. So if there are no settings within the app itself, you probably need to pester the autor of the app about it.

0 Karma
Reply

NoSpaces
Contributor
‎08-16-2024 06:27 AM

Thank you for your answer!
I have just been sent this information to the author.
But I am also interested in another experience related to my case 😃

0 Karma
Reply
Get Updates on the Splunk Community!

Accelerating Observability as Code with the Splunk AI Assistant

We’ve seen in previous posts what Observability as Code (OaC) is and how it’s now essential for managing ...

Integrating Splunk Search API and Quarto to Create Reproducible Investigation ...

 Splunk is More Than Just the Web Console For Digital Forensics and Incident Response (DFIR) practitioners, ...

Congratulations to the 2025-2026 SplunkTrust!

Hello, Splunk Community! We are beyond thrilled to announce our newest group of SplunkTrust members!  The ...