We are continuing our quest to implement new great features and make the vFeed Professional Services more effective.
Here the summary of this weekly update:
- Support of the Mitre ATT&CK initiative
- CAPEC data enrichement with “mitigations”
- Addition of newest OVAL sources
- Python 3.x API update
The vFeed Vulnerability & Threat Intelligence Community Edition Database has been updated with +1750 new CVEs and hundreds of cross-links references (Microsoft Bulletins / Advisories, Metasploit, OpenVAS, Nessus, Nmap, OVAL, Snort, Suricata and more).
We are very happy to announce the immediate availability of the highly anticipated feature : The pre-generated vulnerability & threats JSON files.
Indeed, we have received many customers requests regarding the performance improvement when exporting data into JSON. In fact, the python API access to the SQLite database and all the queries done to retrieve the information make the cumulative response time deteriorate a bit.
As we continue to efficiently enabling the extendibility of the vFeed Vulnerability & Threat Intelligence Professional Services by adding new sources and enhancements. Therefore and for the current week, we have added so far 3 major improvements.
We are happy to introduce a shinny new feature that will significantly improve the way we are dealing with vulnerability and threat big data. The support to “Plugins” is in line with our vFeed IO Technology and Third Party Integration Program (T2PI).
We are very happy to announce the immediate integration of YARA rules and signatures.
YARA is the name of a tool primarily used in malware research and detection. It provides a rule-based approach to create descriptions of malware families based on textual or binary patterns.
We are extremely pleased to announce the availability of our vFeed Vulnerability & Threat Intelligence Professional Services. We took the time to do things well. Several parallel projects were conducted and achieved during the year 2017.
vFeed IO is delighted to announce a new technology partnership, in the terms to our program T2PI, with DSquare Security.
DSquare Security provides D2 Elliot a web exploitation framework that helps enterprise to replicate real-life attacks during web application penetration testing by providing a powerful framework and efficient exploits and tools.