一、cvechecker的安裝
1、首先下載cvechecker並解壓該文件:
1 cd /home/username 2 mkdir cve 3 wget https://raw.githubusercontent.com/wiki/sjvermeu/cvechecker/releases/cvechecker-3.8.tar.gz 4 tar zxvf cvechecker-308.tar.gz
2、然后進行安裝步驟:
1 cd cvechecker-3.8 2 ./configure -prefix=/home/username/cve/ enable-sqlite3 3 #這邊使用mysql也可以,但是我的centos安裝mysq出現各種問題。
3、一把會出現缺少那些依賴包,沒有安裝一類的問題,記得一定要源碼安裝,然后把*.pc文件拷貝到兩個目錄下,距離,我缺少sqlite3:
1 #下載鏈接就不提供了,很好早 2 cd sqlite-320000 3 ./configure 4 make 5 makeinstall 6 cp ./sqlite3.pc /usr/local/lib/pkgconfig/ 7 cp ./splite3.pc /usr/lib64/pkgconfig/
4、然后重新回到cvechecker的目錄下進行編譯安裝:
1 ./configure --prefix=/home/username/cve enable-sqlite3 2 make 3 make install
二、修改配置文件啟動並下載多年的nvdcve漏洞xml文件進行解析入庫
1、修改配置文件:
(1)cvechecker.conf文件復制到/etc下
1 cp ./conf/cvechecker.conf /etc
(2)修改改配置文件:
1 # 2 # Generic settings 3 # 4 5 dbtype = "sqlite"; 6 #dbtype="mysql"; 7 cvecache = "/home/username/cvechecker/var/cvechecker/cache"; 8 datadir = "/home/username/cvechecker/share/cvechecker"; 9 stringcmd = "/usr/bin/strings -n 3 '@file@'"; 10 version_url = "https://raw.github.com/sjvermeu/cvechecker/master/versions.dat"; 11 #userkey = "********"; 12 13 # 14 # For Sqlite3 15 # 16 sqlite3: { 17 localdb = "/home/username/cvechecker/var/cvechecker/local"; 18 globaldb = "/home/username/cvechecker/var/cvechecker/global.db"; 19 }; 20 21 # 22 # For MySQL 23 # 24 mysql: { 25 dbname = "********"; 26 dbuser = "********"; 27 dbpass = "********"; 28 dbhost = "********"; 29 };
2、然后啟動
1 #切換到對應的bin目錄下 2 ./cvechecker -i
3、下載對應的xml文件:
傳進Linux解析:
1 #解析入庫: 2 xsltproc /home/username/cvechecker/share/cvechecker/nvdcve2simple.xsl ./*.xml >> cve.csv
然后執行:
1 #將cve拷貝bin目錄下 2 ./home/username/cvechecker/bin/cvechecker -c ./cve.csv 3 #然后執行 4 ./pullcves pull 5 #把之前上傳的XML文件拷貝到../var/cvechecker/cache/下 6 #再次執行 7 ./pullcves pull 8 #然后查看配置文件對應的數據庫路徑和global.db的路徑是否一致
未完待續。。。