OpenVulnAPI
Documentation and Tools for Cisco's PSIRT openVuln API
The [Cisco PSIRT openVuln API](https://developer.cisco.com/psirt/) is a RESTful API that allows customers to obtain Cisco security vulnerability information in different machine-consumable formats. It supports industrywide security standards such as: * OASIS Common Security Advisory Framework (CSAF) * Common Vulnerability and Exposure (CVE) identifiers * Common Weakness Enumerator (CWE) * Common Vulnerability Scoring System (CVSS) The project is written primarily in Ruby, distributed under the Other license, first published in 2015. Key topics include: advisories, api, api-client, cisco, openvuln.
Cisco PSIRT openVuln API
Overview
The Cisco PSIRT openVuln API is a RESTful API that allows customers to obtain Cisco security vulnerability information in different machine-consumable formats. It supports industrywide security standards such as:
- OASIS Common Security Advisory Framework (CSAF)
- Common Vulnerability and Exposure (CVE) identifiers
- Common Weakness Enumerator (CWE)
- Common Vulnerability Scoring System (CVSS)
NOTE: CSAF is a specification for structured machine-readable vulnerability-related advisories and further refine those standards over time.
API Documentation
Please refer to the openVuln API documentation and learn how to access it at:
https://developer.cisco.com/psirt
NOTE: The openVuln API is open to registered Cisco customers and partners.
Community-Supported Python-based Client : openVulnQuery
The open-source community-supported Python-based API client (openVulnQuery) can be obtained from: https://github.com/CiscoPSIRT/openVulnQuery
Contributors
Showing top 12 contributors by commit count.
Related Repositories
EmbarkStudios/cargo-deny
❌ Cargo plugin for linting your dependencies 🦀
pedrib/PoC
Advisories, proof of concept files and exploits that have been made public by @pedrib.
manifoldfinance/defi-threat
a globally-accessible knowledge base of adversary tactics and techniques based on real-world observations on decentralized finance
disclose/research-threats
Collection of legal threats against good faith Security Researchers; vulnerability disclosure gone wrong. A continuation of work started by @attritionorg
slowmist/papers
SlowMist Vulnerability Research Advisories
AppThreat/vulnerability-db
Vulnerability database and package search for sources such as Linux, OSV, NVD, GitHub and npm. Powered by sqlite, CVE 5.2, purl, and vers.