You can not select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
38 lines
1.1 KiB
38 lines
1.1 KiB
secret=$(jq .secret -r api.json)
|
|
id=$(jq .id -r api.json)
|
|
|
|
domain=node4-central
|
|
|
|
toke=$(curl -sS -X POST "https://"$domain".alienvault.cloud/api/1.1/oauth/token?grant_type=client_credentials" --user $id:$secret |jq .access_token -r)
|
|
|
|
search=$(echo '
|
|
{
|
|
"page":1,
|
|
"size":10000
|
|
}
|
|
')
|
|
|
|
obj=$(curl -sS -X POST "https://"$domain".alienvault.cloud/api/1.1/vulnerabilities/search" -H "Authorization: Bearer $toke" -d "$search")
|
|
|
|
tenantarr=($(echo $obj|jq -r '.results[].tenantId' | sort|uniq |sort))
|
|
cvsssec=("High" "Medium" "Low")
|
|
|
|
tenold="faketen"
|
|
|
|
for ten in ${tenantarr[@]}
|
|
do
|
|
if [ $ten != $tenold ]; then printf "\n$ten Hosts: \n"; fi
|
|
|
|
for sev in ${cvsssec[@]}
|
|
do
|
|
if [ $sev != $tenold ]; then printf "\nCVSS Severity - $sev : \n"; fi
|
|
echo $obj|jq -r ".results[] |select (.tenantId==\"$ten\")| select (.vulnerability.cvssSeverity==\"$sev\")|.asset.name" |sort|uniq -c |sort -n -r
|
|
tenold=$sev
|
|
done
|
|
tenold=$ten
|
|
done
|
|
|
|
|
|
# curl -X GET "https://"$domain".alienvault.cloud/api/1.1/alarms/8abc9871-31c5-b5b4-8dfb-46c0f5772969" \
|
|
# -H "Authorization: Bearer $toke" -vv
|