Title
#fleet
Gavin

Gavin

09/22/2021, 4:15 PM
Really like the vuln management aspect now been playing about with it . currently messing about with JQ to pull out those hard to reach ones like homebrew and choco packages.
fleetctl get software --json > vulns.json

jq '.spec[]|select((.vulnerabilities != null) and  (.source=="chocolatey_packages")) | .name , .vulnerabilities ' vulns.json  | sort | uniq
Tomas Touceda

Tomas Touceda

09/22/2021, 4:19 PM
nice! if you have windows hosts, or if you feel like there are apps that should have some CVEs or CPEs generated but there are none, we would love to get a list of the apps that might have issues so that we can keep improving the system
Gavin

Gavin

09/22/2021, 4:26 PM
Yeah our interest right now is seeing if we can detect Like for like nessus across all three OS’s
4:27 PM
That and seeing what is best syntax for host check queries
zwass

zwass

09/22/2021, 4:28 PM
Please let us know how it compares... This functionality is very early for us but we certainly hope to get our data accuracy comparable with the big players over time.