Detect the OS Get installed packages Debian/Ubuntu: dpkg-query Amazon/RHEL/CentOS: rpm FreeBSD: pkg Get upgradable packages Debian/Ubuntu: apt-get upgrade --dry-run CentOS: yum check-upduate foreach upgradable packages Get CVE IDs in the changelog Debian/Ubuntu: aptitude changelog CentOS: yum changelog end loop Select the CVE detail information Get CVE IDs by using package manager Amazon/RHEL: yum plugin security FreeBSD: pkg audit Vuls DB CVE DB (NVD / JVN) Insert results into DB Reporting Debian Ubuntu CentOS Amazon RHEL FreeBSD