Kota Kanbe
3f8de02683
fix(portscan): to keep backward compatibility before v0.13.0 ( #1076 )
2020-11-19 16:54:36 +09:00
Kota Kanbe
d02535d053
fix(debian): false negative of kernel cves with rdb backend ( #1075 )
...
* fix(debian): false negative of kernel cves with rdb backend
* update golangci.yml
* add --timeout=10m to golangci.yml
2020-11-18 10:32:37 +09:00
Kota Kanbe
75fceff5f7
refactor(report): format-csv ( #1072 )
2020-11-05 21:10:35 +09:00
gy741
ebd3834a35
add(report) -format-csv option ( #1034 )
2020-11-05 20:56:19 +09:00
Kota Kanbe
93059b74c3
feat(report): IgnoredJSONKyes to clear values in result json ( #1071 )
...
* feat(report): IgnoredJSONKyes to clear values in result json
* fix(report): marshal indent in JSON everytime
2020-11-05 20:13:09 +09:00
Kota Kanbe
2fc3462d35
fix(libscan): update trivy deps ( #1070 )
2020-11-05 15:38:12 +09:00
Kota Kanbe
f78dab50cb
fix(fast-root): affectedProcs, ports bug ( #1067 )
2020-10-31 14:21:11 +09:00
Norihiro NAKAOKA
edb324c3d9
fix(portscan): ignore loopback address on remote scan ( #1062 )
...
* change ignore loop back address on remote scan
* fix test case
* change append simple
* fix format
* set golangci-lint timeout
* Revert "set golangci-lint timeout"
This reverts commit 56b1c7089a
2020-10-23 16:40:03 +09:00
Norihiro NAKAOKA
83bcca6e66
experimental: add smart(fast, minimum ports, silently) TCP port scanner ( #1060 )
...
* add struct ListenPorts
* change parse to models.ListenPorts from string
* change support models.ListenPorts in TUI
* add scanPort template , detectScanDest
* add Test_detectScanDest
* change impl scanPorts template
* fix build error
* change collect scan success address
* add Test_matchListenPorts
* add Test_updatePortStatus
* change display port scan result on tui
* change display scan emoji on report
* Revert "change display scan emoji on report"
This reverts commit e281882cc6
2020-10-19 17:47:20 +09:00
Kota Kanbe
a124518d78
fix: hard-coded version #1057 ( #1059 )
2020-10-16 20:42:31 +09:00
Alexander Stein
94bf630e29
Expand negative grep match for any error for lib scans. ( #1056 )
...
Many thanks 👍
Sure, that's better.
Note: FreeBSD
find: `find: /var/run/ppp: Permission denied`
2020-10-12 11:30:11 +09:00
shopper
31bb33fd90
ignore apk warning ( #1052 )
2020-10-12 10:40:01 +09:00
Kota Kanbe
4b680b9960
fix(scan-freebsd): also get installed with pkg info #1042 ( #1051 )
...
* fix(scan-freebsd): also get installed with `pkg info` #1042
* fix test
2020-09-12 05:08:41 +09:00
Kota Kanbe
8a8ab8cb18
feat(libscan): enable to scan vulns of libs with pseudo #1035 ( #1050 )
2020-09-11 13:09:59 +09:00
Kota Kanbe
8146f5fd1b
update readme ( #1049 )
2020-09-11 10:26:57 +09:00
shopper
425c585e47
Support for smtp LOGIN authentication ( #1048 )
...
* finished to implement new mail client
* delete email_test.go
2020-09-04 15:45:29 +09:00
Kota Kanbe
4f1578b2d6
[WIP]fix(scan): collect a running version of kernel-devel ( #1044 )
...
* fix(scan): collect a running kernel-devel version
* refactor
2020-09-01 14:37:40 +09:00
Norihiro NAKAOKA
7969b343b0
Raspberry Pi OS(Raspbian) scanning using OVAL DB ( #1019 )
...
* change: never refer to ChangeLog
* change raspberry pi os use debian oval at report
* change do not use r.Family
* change gost do not use r.Family
* change use r.Family because family has a large impact
* change replace MaineK00n/goval-dictionary@raspberrypi-oval
* note Raspbian Scan Policy
* add Raspbian Changelog support policy
* change grep Package for Raspbian at fast-scan mode
* add changelog preprocessing for Raspbian
* add take note of TODO
* change Changelog fetch part to function
* change error handling
* change solve one TODO
* change make ChangelogDir once
* add comment
* fix oval support Amazon Linux :refs #824
* change to useScannedCves from ovalSupproted
* change confidence for Raspbian
* change skip package for raspbian in OVAL DB
* change separate raspbian implementation from util
* change error, log format
* change print format
* change log format(delete newline)
* change support changelog.(Debian.)gz
* Revert "change support changelog.(Debian.)gz"
This reverts commit 2265a72c67
2020-08-25 14:11:34 +09:00
Kota Kanbe
58cf1f4c8e
refactor(typo): fix typos ( #1041 )
2020-08-24 16:34:32 +09:00
Norihiro NAKAOKA
a5b87af862
delete unnecessary images ( #1036 )
...
* delete unnecessary images
* Revert "delete unnecessary images"
This reverts commit 0967e1c522
2020-08-21 17:07:20 +09:00
Kota Kanbe
a0e592b934
fix(report): fix segfault while uploading to s3 ( #1033 )
2020-08-07 10:31:43 +09:00
Kota Kanbe
7eccc538bb
fix(msfdb): udpate go-msfdb-deps ( #1032 )
2020-08-06 16:54:14 +09:00
Kota Kanbe
59daa8570a
fix(gost): suppress err logging when unsupported debian ( #1031 )
2020-08-05 20:05:50 +09:00
Kota Kanbe
3f52d318bc
fix(log): suppress err msg if no access priv to logfile ( #1029 )
2020-07-31 16:55:12 +09:00
takuzoo
11a7a0c934
Display metasploit module information for each detected CVE-IDs ( #1011 )
...
* add metasploit
* fix go deps
* fix msf report
* fix msfdb server port number
* delete non-unique msfdb url from fulltext report
* fix(report): validate msfdb config on report (#1 )
* fix(msfdb): update deps (go-msfdb)
* version up go-msfdb v0.1.0
Co-authored-by: Kota Kanbe <kotakanbe@gmail.com >
2020-07-03 14:05:07 +09:00
sadayuki-matsuno
89f49b0e29
Fix trivy parser test ( #1014 )
...
* fix trivy parser test
* fixed parser data
2020-06-24 17:14:43 +09:00
Kota Kanbe
72457cbf8e
bump up version
2020-06-24 10:57:39 +09:00
Kota Kanbe
c11ba27509
fix(libscan): include a lockfile path of libs ( #1012 )
2020-06-24 10:46:00 +09:00
segatomo
8a611f9ba6
add diff-mode info ( #1008 )
2020-06-19 16:07:14 +09:00
Kota Kanbe
4a73875e4d
bump up version ( #1007 )
2020-06-17 12:21:26 +09:00
shopper
d9d5e612ff
Support ProxyJump option when using ssh command ( #1004 )
...
* Add proxyjump func
* Run go mod tidy
* Run make fmt
2020-06-17 12:15:12 +09:00
Kota Kanbe
4d8599e4fc
update deps ( #1006 )
...
see https://github.com/knqyf263/go-apk-version/pull/1
2020-06-16 07:48:07 +09:00
Norihiro NAKAOKA
59c7061d29
Fix SSH failure due to .ssh/config owner ( #1005 )
...
* use -F option, success configtest and scan
* add sshConfigPath in config.toml
* Use sshConfigPath in config.toml when using ssh -F
* change -ssh-config to deprecated
* fix typo
* add sshConfigPath in tomltemplate
2020-06-16 05:48:31 +09:00
segatomo
996557c667
support alpine3.11 ( #1002 )
2020-06-12 13:42:11 +09:00
ahulab
519fb19a77
Added ReportedAt time for server mode reports ( #996 )
...
- Fixes #928
2020-06-11 11:42:04 +09:00
kazuminn
36456cb151
feat(wordpress): Cache WpVulnDB ( #989 )
...
* add wpVulnCache
* fix bug
* add test
* fmt
* fix bug
* refactor
* fix bug
2020-06-05 16:08:28 +09:00
sadayuki-matsuno
4ae87cc36c
Fix releaser ( #988 )
...
* fix releaser
* fix releaser
* fix releaser
* fix releaser
* add 32 bit releaser and add exit code in cmd
* delete 32 bit releaser
* fix
2020-06-05 15:04:06 +09:00
shopper
b37df89fb1
Support SMTPS when using report -to-email ( #991 )
...
* Add smtps func
* Add SMTPS implementation
* fix error message
2020-06-05 14:42:01 +09:00
sadayuki-matsuno
d18e7a751d
add trivy parser ( #981 )
...
* add trivy parser
* fix test
* format
* add title and summary
* add trivy parse command
* add uploader
* set args by env
* add README
* add err check
* fix
* fix
* fix
* fix test
* update trivy
* refactor
* delete require uuid
* delete uuid from trivy parser
Co-authored-by: Kota Kanbe <kotakanbe@gmail.com >
2020-05-29 18:06:45 +09:00
kazuminn
8d5ea98e50
add -wp-ignore-inactive flag which ignores inactive plugin or themes ( #974 )
...
* command
* config
* ignore inactive
* fix
* add test
* fmt
* add unset test
* rename
* add test
* refactor
* fix
* refactor
* refactor
* fix golangci-lint error
2020-05-29 15:27:47 +09:00
Kota Kanbe
835dc08049
fix .golangci.yml
2020-05-27 20:33:57 +09:00
Kota Kanbe
62c9409fe9
add a github actions config ( #985 )
...
* add a github actions config
* fix(log): Don't create a log dir when testing
* remove a meaningless test case
* Thanks for everything, Mr, Travys.
* add golangci
* add goreleaser.yml
* add tidy.yml
* add golang-ci
* fix many lint warnings
2020-05-27 20:11:24 +09:00
Kota Kanbe
2374f578ed
Bump up version
2020-05-26 09:32:10 +09:00
shopper
34e2f033d8
add kernelnames ubuntu20.04 ( #982 )
2020-05-22 12:19:07 +09:00
kazuminn
420825cacc
remove append ( #978 )
2020-05-20 13:55:07 +09:00
Kota Kanbe
466ec93d8e
bump up version
2020-05-08 17:15:25 +09:00
Kota Kanbe
3f5bb6ab29
fix(scan): alpine detection #965 ( #966 )
...
* fix(scan): alpine detection #965
* use knqyf263/go-apk-version
2020-05-08 16:12:01 +09:00
Kota Kanbe
ebe5f858c8
update trivy, and unsupport image scanning feature ( #971 )
...
* update trivy, fanal. unsupport image scanning
* Update models/library.go
Co-authored-by: Teppei Fukuda <teppei@elab.ic .i.u-tokyo.ac.jp>
* add -no-progress flag to report/tui cmd
* Display trivy vuln info to tui/report
* add detection method to vulninfo detected by trivy
* fix(uuid): change uuid lib to go-uuid #929 (#969 )
* update trivy, fanal. unsupport image scanning
* Update models/library.go
Co-authored-by: Teppei Fukuda <teppei@elab.ic .i.u-tokyo.ac.jp>
* add -no-progress flag to report/tui cmd
* Display trivy vuln info to tui/report
* add detection method to vulninfo detected by trivy
* unique ref links in TUI
* download trivy DB only when lock file is specified in config.toml
Co-authored-by: Teppei Fukuda <teppei@elab.ic .i.u-tokyo.ac.jp>
2020-05-08 15:24:39 +09:00
Kota Kanbe
9dd025437b
fix(uuid): change uuid lib to go-uuid #929 ( #969 )
2020-05-06 14:14:07 +09:00
Wagde Zabit
c0ebac305a
composer.lock insteaad of composer.json ( #973 )
...
Co-authored-by: Wagde Zabit <wagde@orcasecurity.io >
2020-05-01 15:20:33 +09:00
