Search Endpoint by CVE - Generic

Hunt for assets with a given CVE using available tools

Common Playbooks · 17 tasks · 1 input · 3 outputs

Inputs

  • CVE_ID — The CVE ID

Outputs

  • Kenna.Assets — Compromised Assets from Kenna
  • Nexpose.Asset — Compromised Assets from Nexpose
  • Endpoint — Global compromised Assets

Commands used

kenna-search-assets kenna-search-vulnerabilities nexpose-search-assets

Flowchart

yes yes yes yes yes Start Start Is there CVE? Is there CVE? Search CVE Search CVE Rapid7 Nexpose Rapid7 Nexpose Is Rapid7 Nexpose enabled? Is Rapid7 Nexpose enabled? Search CVE with Rapid7 Nexpose - nexpose-search-assets Search CVE with Rapid7 Ne... nexpose-search-assets Is Kennav2 enabled? Is Kennav2 enabled? Kennav2 Kennav2 Search CVE with Kenna - kenna-search-vulnerabilities Search CVE with Kenna kenna-search-vulnerabilities Done Done Found results? Found results? Get hostname from assetID - kenna-search-assets Get hostname from assetID kenna-search-assets RiskSense RiskSense Is RiskSense Enabled? Is RiskSense Enabled? CVE Exposure - RiskSense - CVE Exposure - RiskSense CVE Exposure - RiskSense CVE Exposure - RiskSense Set results to Endpoint context - SetAndHandleEmpty Set results to Endpoint c... SetAndHandleEmpty Set results to Endpoint context - SetAndHandleEmpty Set results to Endpoint c... SetAndHandleEmpty