README.md
1# cvechecker
2
3The goal of cvechecker is to report about possible vulnerabilities on your
4system, by scanning a list of installed software and matching results with
5the CVE database. This is not a bullet-proof method and you will have many false positives (ie: vulnerability is fixed with a revision-release, but the tool isn't able to detect the revision itself), yet it is still better than nothing, especially if you are running a distribution with little security coverage.
6
7### Quickstart
8--------------
91. Initalize the SQLite3 Database
10 ```~# cvechecker -i```
11
122. Load CVE and version matching rules
13 ```~$ pullcves pull```
14
153. Generate List of Files to scan
16 ```~$ find / -type f -perm -o+x > scanlist.txt```
17 ```~$ echo "/proc/version" >> scanlist.txt```
18
194. Gather List of Installed Software/Versions
20 ```~$ cvechecker -b scanlist.txt```
21
225. Output Matching CVE Entries
23 ```~$ cvechecker -r```
24
25More detailed installation information available via the [installation docs](../../wiki/Installation).
26[The homepage for this project](../../wiki).
27