us-cert.py
This script helps convert US-CERT notifications into readable CSV files. It also aggregates the HTML into a named directory structure.
Dependencies
lxml, requests, pandas
Installation
Linux / OSX
pip install -r requirements.txt
Windows
- Download
lxmlfrom pypi(https://pypi.python.org/pypi/lxml/3.6.4). - This also worked for
lxml:set STATICBUILD=true && pip install lxml sudo pip install pandas(if you get an error trysudo pip install --upgrade pipfirst)
Python
This tool has been built and tested with Python 2.7. I believe it should work with Python 3+, but I am not 100%. Feel free to PR anything that resolves issues with Python 3+.
Example usage
Getting the highs, mediums, lows and unassigned severity alerts into csv tables from September 20th, 2017 to current date.
python uscert.py -clum --from-date 20-09-2017
Usage
usage: uscert.py [-h] [-a] [-b] [-c] [-d] [-f] [--from-date FROM_DATE] [-l]
[--latest] [--link LINK] [-m] [-t] [-u] [--update]
[--year [YEAR]]
Downloads and parses vulnerability summaries from the US-CERT website.
Creates CSV file(s) for further dissemination.
Copyright (C) 2017 Adam Schaal
MIT License
optional arguments:
-h, --help show this help message and exit
-a, --all retrieve all missing bulletin since 2010 (lengthy!)
-b, --bulletin retrieve a specific bulletin
-c, --csv creates csv files from html
-d, --directory name of directory for saving bulletins -
default(bulletins)
-f, --force force download, ignore / overwrite cached directory
--from-date FROM_DATE
starting date (dd-mm-YYYY)
-l, --low select low vulnerabilities as well
--latest show latest bulletin
--link LINK choose "a" for anchor tags or "h" for hyperlinks -
default(h)
-m, --medium show medium vulnerabilities as well
-t, --tables name of directory for saving tables - default(tables)
-u, --unassigned show Severity Not Yet Assigned vulnerabilities as well
--update retrieve all newest bulletin since last update
--year [YEAR] retrieve all bulletins for a given year year