NVD-CVE-Fetcher-App

Splunk Community
×

Join the Conversation

Without signing in, you're just watching from the sidelines. Sign in or Register to connect, share, and be part of the Splunk Community.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question

NVD-CVE-Fetcher-App

NVD-CVE-Fetcher-App
This is a Splunk app that is designed to fetch vulnerabilities from the National Vulnerability Database (NVD) (https://nvd.nist.gov/). The app will fetch new vulnerabilities created on this database every day. The vulnerability can be used by the SOC analyst to relate it to there resources. Sample Use Case: 1. An organization named Acme has 100 machines with OP Ubuntu 20.04.3 installed. 2. The organization is using Splunk to manage security potential. 3. Splunk already has the list of machines in the organisation 4. A new vulnerability is created on NVD about operating system Ubuntu 20.04.3 yesterday 5. Splunk app fetched vulnerability data today. 6. The SOC analyst now has both data in Splunk; now he knows that 100 systems are vulnerable. He needs to raise a ticket for the system team to apply a patch to these systems.
Ask a Question View in Splunkbase
0 topics and 0 replies mentioned NVD-CVE-Fetcher-App in
Latest Topics
No posts to display.
Latest Replies
No posts to display.
Top Topics
No posts to display.
My Topics
No posts to display.