-
-
Notifications
You must be signed in to change notification settings - Fork 302
Expand file tree
/
Copy path__init__.py
More file actions
119 lines (117 loc) · 5.73 KB
/
__init__.py
File metadata and controls
119 lines (117 loc) · 5.73 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
#
# Copyright (c) nexB Inc. and others. All rights reserved.
# VulnerableCode is a trademark of nexB Inc.
# SPDX-License-Identifier: Apache-2.0
# See http://www.apache.org/licenses/LICENSE-2.0 for the license text.
# See https://github.com/aboutcode-org/vulnerablecode for support or download.
# See https://aboutcode.org for more information about nexB OSS projects.
#
from vulnerabilities.improvers import valid_versions
from vulnerabilities.improvers import vulnerability_status
from vulnerabilities.pipelines import add_cvss31_to_CVEs
from vulnerabilities.pipelines import compute_advisory_todo
from vulnerabilities.pipelines import compute_package_risk
from vulnerabilities.pipelines import compute_package_version_rank
from vulnerabilities.pipelines import enhance_with_exploitdb
from vulnerabilities.pipelines import enhance_with_kev
from vulnerabilities.pipelines import enhance_with_metasploit
from vulnerabilities.pipelines import flag_ghost_packages
from vulnerabilities.pipelines import populate_vulnerability_summary_pipeline
from vulnerabilities.pipelines import remove_duplicate_advisories
from vulnerabilities.pipelines.v2_improvers import clamav_rules
from vulnerabilities.pipelines.v2_improvers import collect_ssvc_trees
from vulnerabilities.pipelines.v2_improvers import compute_advisory_todo as compute_advisory_todo_v2
from vulnerabilities.pipelines.v2_improvers import compute_package_risk as compute_package_risk_v2
from vulnerabilities.pipelines.v2_improvers import (
computer_package_version_rank as compute_version_rank_v2,
)
from vulnerabilities.pipelines.v2_improvers import enhance_with_exploitdb as exploitdb_v2
from vulnerabilities.pipelines.v2_improvers import enhance_with_kev as enhance_with_kev_v2
from vulnerabilities.pipelines.v2_improvers import (
enhance_with_metasploit as enhance_with_metasploit_v2,
)
from vulnerabilities.pipelines.v2_improvers import flag_ghost_packages as flag_ghost_packages_v2
from vulnerabilities.pipelines.v2_improvers import relate_severities
from vulnerabilities.pipelines.v2_improvers import sigma_rules
from vulnerabilities.pipelines.v2_improvers import suricata_rules
from vulnerabilities.pipelines.v2_improvers import unfurl_version_range as unfurl_version_range_v2
from vulnerabilities.pipelines.v2_improvers import yara_rules
from vulnerabilities.utils import create_registry
IMPROVERS_REGISTRY = create_registry(
[
valid_versions.GitHubBasicImprover,
valid_versions.GitLabBasicImprover,
valid_versions.NginxBasicImprover,
valid_versions.ApacheHTTPDImprover,
valid_versions.DebianBasicImprover,
valid_versions.NpmImprover,
valid_versions.ElixirImprover,
valid_versions.ApacheTomcatImprover,
valid_versions.ApacheKafkaImprover,
valid_versions.IstioImprover,
valid_versions.DebianOvalImprover,
valid_versions.UbuntuOvalImprover,
valid_versions.OSSFuzzImprover,
valid_versions.RubyImprover,
valid_versions.GithubOSVImprover,
vulnerability_status.VulnerabilityStatusImprover,
valid_versions.CurlImprover,
flag_ghost_packages.FlagGhostPackagePipeline,
enhance_with_kev.VulnerabilityKevPipeline,
enhance_with_metasploit.MetasploitImproverPipeline,
enhance_with_exploitdb.ExploitDBImproverPipeline,
compute_package_risk.ComputePackageRiskPipeline,
compute_package_version_rank.ComputeVersionRankPipeline,
add_cvss31_to_CVEs.CVEAdvisoryMappingPipeline,
remove_duplicate_advisories.RemoveDuplicateAdvisoriesPipeline,
populate_vulnerability_summary_pipeline.PopulateVulnerabilitySummariesPipeline,
exploitdb_v2.ExploitDBImproverPipeline,
enhance_with_kev_v2.VulnerabilityKevPipeline,
flag_ghost_packages_v2.FlagGhostPackagePipeline,
enhance_with_metasploit_v2.MetasploitImproverPipeline,
compute_package_risk_v2.ComputePackageRiskPipeline,
compute_version_rank_v2.ComputeVersionRankPipeline,
compute_advisory_todo_v2.ComputeToDo,
unfurl_version_range_v2.UnfurlVersionRangePipeline,
compute_advisory_todo.ComputeToDo,
collect_ssvc_trees.CollectSSVCPipeline,
relate_severities.RelateSeveritiesPipeline,
sigma_rules.SigmaHQImproverPipeline,
sigma_rules.SigmaSamuraiMDRImproverPipeline,
sigma_rules.SigmaMbabinskiImproverPipeline,
sigma_rules.P4T12ICKSigmaImproverPipeline,
yara_rules.ProtectionsArtifactsYara,
yara_rules.YaraRulesYara,
yara_rules.XumeiquerForensicsYara,
yara_rules.ReversinglabsYaraRules,
yara_rules.AdvancedThreatResearchYara,
yara_rules.BartblazeYaraRules,
yara_rules.GodaddyYaraRules,
yara_rules.SupportIntelligenceIcewaterYara,
yara_rules.Jeff0FalltradesSignaturesYara,
yara_rules.TjnelRepoYara,
yara_rules.JpcertccJpcertYara,
yara_rules.MikesxrsOpenSourceYaraRules,
yara_rules.FboldewinYaraRules,
yara_rules.H3x2bYaraRules,
yara_rules.RoadwyDefenderYara,
yara_rules.MthchtThreatHuntingKeywordsYara,
yara_rules.Neo23x0SignatureBaseYara,
yara_rules.MalpediaSignatorRulesYara,
yara_rules.BaderjYara,
yara_rules.DeadbitsYaraRules,
yara_rules.PmelsonYaraRules,
yara_rules.SbousseadenYaraHunts,
yara_rules.EmbeeResearchYaraRules,
yara_rules.RussianPanda95YaraRules,
yara_rules.AilProjectAilYaraRules,
yara_rules.MalgamyYaraRules,
yara_rules.ElceefYaraRulz,
yara_rules.TenableYaraRules,
yara_rules.Dr4k0niaYaraRules,
yara_rules.Umair9747YaraRules,
clamav_rules.ClamVRulesImproverPipeline,
suricata_rules.SudohyakSuricataImproverPipeline,
suricata_rules.OISFSuricataImproverPipeline,
]
)