- The daily database feed update will be maintained until 30th of July 2019.
- The support will cover python API bug fixes and maintenance releases until 30th of July 2019.
We are happy to introduce a shinny new feature that will significantly improve the way we are dealing with vulnerability and threat big data. The support to “Plugins” is in line with our vFeed IO Technology and Third Party Integration Program (T2PI).
Here is a cool article written by Kin Lane the author the renowned blog API Evangelist about the vFeed approach. The author discusses our model from a technical and business perspective and what would be the perfect solution in a perfect world.
However, we had intentionally geared our development towards a Python API for various reasons we depicted in a previous post “API or not – Why do like everyone else?“. Nevertheless, Kin raised several good points in his article. A must read !!
I often hear clients and users request applications list of features and among their question appears: Do you guys provide a web service or RESTful API ?
Although the API approach has opened a new era of interoperability between systems and solutions, has greatly reduced the connectivity effort and simplified life to many of us. However, there are as well numerous drawbacks and disadvantages. Occasionally, companies tend to neglect the growing significant costs incurred related to the development, the maintenance, the alignment with the product capabilities and the documentation that must be maintained up to date. Ask the experts of the cost accounting, they will be happy to make an exposé regarding the direct and indirect costs and their stake in a company.
Kali Linux is a Debian-derived Linux distribution designed for digital forensics and penetration testing. It comes preinstalled with over 300 penetration-testing programs.
The development team has added the ability to install our API. The Kali package page is http://pkg.kali.org/pkg/vfeed
vFeed Framework is a CVE, CWE and OVAL Compatible naming scheme concept that provides extra structured detailed third-party references and technical characteristics for a CVE entry through an extensible XML/JSON schema. It also improves the reliability of CVEs by providing a flexible and comprehensive vocabulary for describing the relationship with other standards and security references.
An independant developer has release a Shiny App is for searching and visualizing vFeed fully aggregated, cross-linked and standardized Vulnerability CVE Database that contains detective and preventive security information repository used for gathering vulnerability and mitigation data on the internet.
This interesting paper from Lancaster Research Center shed light on a methodology to create a vulnerability scanner for Industrial Control Systems . The authors leveraged the power of vFeed database correlation, amongst other free utilities, to release a tool called SimaticScan to scan Siemens PLCs vulnerabilities.