https://github.com/osquery/osquery logo
Title
s

smarsh

10/16/2019, 3:09 PM
Has anyone found a good or more automated way to query for CVE’s with OS Query?
p

packetzero

10/16/2019, 3:12 PM
I don't know if there is one. osquery is for introspecting the system / device it's installed on. So you could gather details on the operating system version, patches installed, installed programs. Then you can use some utility to find CVEs for those components and versions.
s

smarsh

10/16/2019, 3:23 PM
absolutely - i was wondering if we could start stemming into pulling this information as there is an announcement automatically look for X but alot of CVEs require us to look for different components on the OS