-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathrecent-kevs.rb
executable file
·96 lines (80 loc) · 2.65 KB
/
recent-kevs.rb
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
#!/usr/bin/env ruby
require 'net/http'
require 'json'
require 'date'
require 'optparse'
require 'base64'
def parse_options
options = { fresh: true}
OptionParser.new do |opts|
opts.on('--since DATE', 'Display vulnerabilities since this date (format: YYYY-MM-DD)') do |date|
options[:since] = Date.parse(date)
options[:fresh] = false
end
opts.on('--added', 'Show the added date instead of the due date') do
options[:added] = true
end
opts.on('--due', 'Show the due date (default behavior)') do
options[:due] = true
end
opts.on('--fresh', 'Display entries with due dates today or in the future (default behavior)') do
options[:fresh] = true
end
opts.on('-h', '--help', 'Show this message') do
puts opts
exit
end
end.parse!
options
end
options = parse_options
since_date = options[:since] || (Date.today - (Date.today.wday + 2) % 7)
since_day = since_date.strftime("%A")
def fetch_vuln_data
url = 'https://raw.githubusercontent.com/todb/kev-lite/refs/heads/main/cisa.json'
uri = URI(url)
response = Net::HTTP.get(uri)
JSON.parse(response)
end
def filter_vulns(vuln_data, since_date, options)
if options[:fresh]
vuln_data['vulnerabilities'].select do |vuln|
Date.parse(vuln['dueDate']) >= Date.today
end
else
vuln_data['vulnerabilities'].select do |vuln|
Date.parse(vuln['dateAdded']) >= since_date
end
end
end
def print_status_line(since_date, recent_vulns, options)
kev_count = recent_vulns.size
kev_label = kev_count == 1 ? 'KEV' : 'KEVs'
if options[:fresh]
puts "[*] Displaying #{kev_count} #{kev_label} with due dates today or in the future"
elsif kev_count == 0
puts "[*] No KEVs added since #{since_date} (#{since_date.strftime('%A')})"
else
puts "[*] Displaying #{kev_count} #{kev_label} since #{since_date} (#{since_date.strftime('%A')})"
end
end
def print_kevs(recent_vulns, options)
recent_vulns.each do |vuln|
cve_id = vuln['cveID']
vuln_name = vuln["vulnerabilityName"].sub(/ Vulnerability\s*/, '')
added_date = vuln['dateAdded']
due_date = vuln['dueDate']
if options[:added] && options[:due]
puts "#{cve_id} #{vuln_name} (Added: #{added_date} Due: #{due_date})"
elsif options[:added]
puts "#{cve_id} #{vuln_name} (Added: #{added_date})"
else
puts "#{cve_id} #{vuln_name} (Due: #{due_date})"
end
end
end
vuln_data = fetch_vuln_data()
recent_vulns = filter_vulns(vuln_data, since_date, options)
recent_vulns.sort_by! { |vuln| [Date.parse(vuln['dateAdded']), vuln["vulnerabilityName"]] }.reverse!
print_status_line(since_date, recent_vulns, options)
print_kevs(recent_vulns, options)