1# cvechecker 2 3The goal of cvechecker is to report about possible vulnerabilities on your 4system, by scanning a list of installed software and matching results with 5the CVE database. This is not a bullet-proof method and you will have many false positives (ie: vulnerability is fixed with a revision-release, but the tool isn't able to detect the revision itself), yet it is still better than nothing, especially if you are running a distribution with little security coverage. 6 7### Quickstart 8-------------- 91. Initalize the SQLite3 Database 10 ```~# cvechecker -i``` 11 122. Load CVE and version matching rules 13 ```~$ pullcves pull``` 14 153. Generate List of Files to scan 16 ```~$ find / -type f -perm -o+x > scanlist.txt``` 17 ```~$ echo "/proc/version" >> scanlist.txt``` 18 194. Gather List of Installed Software/Versions 20 ```~$ cvechecker -b scanlist.txt``` 21 225. Output Matching CVE Entries 23 ```~$ cvechecker -r``` 24 25More detailed installation information available via the [installation docs](../../wiki/Installation). 26[The homepage for this project](../../wiki). 27