Skip to content

Commit

Permalink
Update CPE maps (#301)
Browse files Browse the repository at this point in the history
  • Loading branch information
@tsellers-r7
tsellers-r7 authored Dec 7, 2020
1 parent b74108d commit 5b9ccca
Show file tree
Hide file tree
Showing 14 changed files with 124 additions and 17 deletions.
44 changes: 44 additions & 0 deletions cpe-remap.yaml
View file
Original file line number Diff line number Diff line change
@@ -1,12 +1,16 @@
mappings:
alpine:
vendor: alpinelinux
products:
linux: alpine_linux
apache:
products:
httpd: http_server
apple:
products:
ios: iphone_os
aprelium_technologies:
vendor: aprelium
alt-n:
vendor: altn
bea:
Expand All @@ -29,18 +33,34 @@ mappings:
vendor: cisco
products:
adaptive_security_appliance: adaptive_security_appliance_software
apic: application_policy_infrastructure_controller
pix: pix_firewall_software
telepresence: telepresence_video_communication_server_software
crushftp:
products:
crushftp_web_interface: crushftp
data_domain:
vendor: dell
products:
dd_os: emc_data_domain_os
debian:
products:
linux: debian_linux
drupal:
products:
cms: drupal
embedthis:
products:
goahead_webserver: goahead
emc:
products:
celerra: celerra_network_attached_storage
f5:
products:
big-ip: big-ip_local_traffic_manager
big-ip_ltm: big-ip_local_traffic_manager
fedora_project:
vendor: fedoraproject
hp:
products:
ilo: integrated_lights_out
Expand All @@ -50,6 +70,10 @@ mappings:
lotus_domino: lotus_domino_server
ibm_domino: lotus_domino
os/400: os_400
intel:
products:
intel(r)_active_management_technology: active_management_technology
intel(r)_standard_manageability: standard_manageability
jamf:
products:
jamf_pro: jamf
Expand All @@ -58,13 +82,20 @@ mappings:
junos_os: junos
kibana:
vendor: elasticsearch
kodi:
products:
media_server: kodi
cz.nic:
vendor: knot-dns
litespeed_technologies:
vendor: litespeedtech
linux:
products:
linux: linux_kernel
lynx_technology:
vendor: lynxtechnology
products:
twonky_media_server: twonky_server
mailenable:
products:
mail_server: mailenable
Expand Down Expand Up @@ -96,13 +127,18 @@ mappings:
vendor: modwsgi
mort_bay:
vendor: mortbay
munin:
vendor: munin-monitoring
nlnet_labs:
vendor: nlnetlabs
products:
dnsd: name_server_daemon
net-snmp:
products:
snmp_agent: net-snmp
owncloud:
products:
owncloud_server: owncloud
palo_alto_networks:
vendor: paloaltonetworks
products:
Expand All @@ -114,6 +150,11 @@ mappings:
vendor: parallels
proftpd_project:
vendor: proftpd
progress:
products:
openedge_explorer: openedge
pulse_secure:
vendor: pulsesecure
realvnc_ltd.:
vendor: realvnc
red_hat:
Expand All @@ -131,6 +172,8 @@ mappings:
vendor: sun
products:
solaris: sunos
swagger:
vendor: smartbear
tandberg:
vendor: cisco
tightvnc:
Expand All @@ -148,6 +191,7 @@ mappings:
products:
photon_linux: photon_os
zimbra: zimbra_desktop
vcenter: vcenter_server
vmware_esx_server: esx
vmware_esxi_server: esxi
wind_river:
Expand Down
26 changes: 23 additions & 3 deletions xml/favicons.xml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -21,6 +21,7 @@
<param pos="0" name="service.vendor" value="Munin"/>
<param pos="0" name="service.product" value="Munin"/>
<param pos="0" name="service.certainty" value="0.5"/>
<param pos="0" name="service.cpe23" value="cpe:/a:munin-monitoring:munin:-"/>
</fingerprint>

<fingerprint pattern="^ce849e0d986f73c97aa81290c2052164$">
Expand Down Expand Up @@ -57,6 +58,7 @@
<param pos="0" name="service.vendor" value="Drupal"/>
<param pos="0" name="service.product" value="CMS"/>
<param pos="0" name="service.certainty" value="0.5"/>
<param pos="0" name="service.cpe23" value="cpe:/a:drupal:drupal:-"/>
</fingerprint>

<fingerprint pattern="^91b72b23e7f499d6c09cb18c7b1278f1$">
Expand All @@ -65,6 +67,7 @@
<param pos="0" name="service.vendor" value="Kodi"/>
<param pos="0" name="service.product" value="Media Server"/>
<param pos="0" name="service.certainty" value="0.5"/>
<param pos="0" name="service.cpe23" value="cpe:/a:kodi:kodi:-"/>
</fingerprint>

<fingerprint pattern="^d403850756671a93ca205b8128140494$">
Expand Down Expand Up @@ -111,8 +114,9 @@
<description>Moodle</description>
<example>135aed33c0a7b8f44f0227a71b9ce345</example>
<param pos="0" name="service.vendor" value="Moodle"/>
<param pos="0" name="service.product" value="Moodle CMS"/>
<param pos="0" name="service.product" value="Moodle"/>
<param pos="0" name="service.certainty" value="0.5"/>
<param pos="0" name="service.cpe23" value="cpe:/a:moodle:moodle:-"/>
</fingerprint>

<fingerprint pattern="^23ab9cf3907dfc3b047d8b14e7303d0d$">
Expand Down Expand Up @@ -146,6 +150,7 @@
<param pos="0" name="service.vendor" value="ownCloud"/>
<param pos="0" name="service.product" value="ownCloud Server"/>
<param pos="0" name="service.certainty" value="0.5"/>
<param pos="0" name="service.cpe23" value="cpe:/a:owncloud:owncloud:-"/>
</fingerprint>

<fingerprint pattern="^da897184fba34d5fe72148963f42b577$">
Expand All @@ -168,8 +173,10 @@
<description>Metasploit Pro</description>
<example>08ff173efec0750dd29ac7f44d972427</example>
<param pos="0" name="service.vendor" value="Rapid7"/>
<param pos="0" name="service.product" value="Metasploit Pro"/>
<param pos="0" name="service.product" value="Metasploit"/>
<param pos="0" name="service.edition" value="Pro"/>
<param pos="0" name="service.certainty" value="0.5"/>
<param pos="0" name="service.cpe23" value="cpe:/a:rapid7:metasploit:-"/>
</fingerprint>

<fingerprint pattern="^23671ccca2849ae58d1b04c218013382$">
Expand Down Expand Up @@ -236,8 +243,9 @@
<description>Swagger UI</description>
<example>f983f318b0f0dff7a9303973f36ec45a</example>
<param pos="0" name="service.vendor" value="Swagger"/>
<param pos="0" name="service.product" value="UI"/>
<param pos="0" name="service.product" value="Swagger UI"/>
<param pos="0" name="service.certainty" value="0.5"/>
<param pos="0" name="service.cpe23" value="cpe:/a:smartbear:swagger_ui:-"/>
</fingerprint>

<fingerprint pattern="^1c4201c7da53d6c7e48251d3a9680449$">
Expand Down Expand Up @@ -272,6 +280,7 @@
<param pos="0" name="service.vendor" value="Progress"/>
<param pos="0" name="service.product" value="OpenEdge Explorer"/>
<param pos="0" name="service.certainty" value="0.5"/>
<param pos="0" name="service.cpe23" value="cpe:/a:progress:openedge:-"/>
</fingerprint>

<fingerprint pattern="^297a81069094d00a052733d3a0537d18$">
Expand All @@ -280,6 +289,7 @@
<param pos="0" name="service.vendor" value="CrushFTP"/>
<param pos="0" name="service.product" value="CrushFTP Web Interface"/>
<param pos="0" name="service.certainty" value="0.5"/>
<param pos="0" name="service.cpe23" value="cpe:/a:crushftp:crushftp:-"/>
</fingerprint>

<fingerprint pattern="^f7728520c81b7a303d8e54d282e13a16$">
Expand Down Expand Up @@ -501,6 +511,7 @@
<param pos="0" name="service.vendor" value="Lynx Technology"/>
<param pos="0" name="service.product" value="Twonky Media Server"/>
<param pos="0" name="service.certainty" value="0.5"/>
<param pos="0" name="service.cpe23" value="cpe:/a:lynxtechnology:twonky_server:-"/>
</fingerprint>

<fingerprint pattern="^d14310fffe94d78c0da0c8fadb993f78$">
Expand Down Expand Up @@ -981,6 +992,10 @@
<description>OpenMediaVault</description>
<example>7da8813873190b6e3d7d8957d798bd1e</example>
<example>31ccf4e22ba33dbec54cc357a43a36d3</example>
<param pos="0" name="service.vendor" value="OpenMediaVault"/>
<param pos="0" name="service.product" value="OpenMediaVault"/>
<param pos="0" name="service.certainty" value="0.5"/>
<param pos="0" name="service.cpe23" value="cpe:/a:openmediavault:openmediavault:-"/>
<param pos="0" name="os.vendor" value="OpenMediaVault"/>
<param pos="0" name="os.family" value="Linux"/>
<param pos="0" name="os.product" value="OpenMediaVault"/>
Expand Down Expand Up @@ -1143,6 +1158,10 @@
<example>af13b379bdb4ae7a5e68d9aa4419b2e4</example>
<example>cd844ad9671131f5464458a2ef58b7bc</example>
<example>c32e2dc4d7caedd5cefc9d44cc4f62ec</example>
<param pos="0" name="service.vendor" value="Cisco"/>
<param pos="0" name="service.product" value="APIC"/>
<param pos="0" name="service.certainty" value="0.5"/>
<param pos="0" name="service.cpe23" value="cpe:/a:cisco:application_policy_infrastructure_controller:-"/>
<param pos="0" name="hw.vendor" value="Cisco"/>
<param pos="0" name="hw.product" value="APIC"/>
<param pos="0" name="hw.device" value="Network Appliance"/>
Expand Down Expand Up @@ -1676,6 +1695,7 @@
<param pos="0" name="os.product" value="DD OS"/>
<param pos="0" name="os.device" value="Storage"/>
<param pos="0" name="os.certainty" value="0.5"/>
<param pos="0" name="os.cpe23" value="cpe:/o:dell:emc_data_domain_os:-"/>
<param pos="0" name="hw.vendor" value="Data Domain"/>
<param pos="0" name="hw.product" value="DD OS"/>
<param pos="0" name="hw.device" value="Storage"/>
Expand Down
1 change: 1 addition & 0 deletions xml/ftp_banners.xml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -560,6 +560,7 @@ more text</example>
<param pos="0" name="hw.vendor" value="EMC"/>
<param pos="0" name="hw.device" value="Storage"/>
<param pos="0" name="hw.product" value="Celerra"/>
<param pos="0" name="hw.cpe23" value="cpe:/h:emc:celerra_network_attached_storage:-"/>
</fingerprint>

<fingerprint pattern="^JD FTP Server Ready.*$">
Expand Down
25 changes: 21 additions & 4 deletions xml/html_title.xml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -2063,6 +2063,7 @@
<param pos="0" name="os.vendor" value="Data Domain"/>
<param pos="0" name="os.product" value="DD OS"/>
<param pos="0" name="os.device" value="Storage"/>
<param pos="0" name="os.cpe23" value="cpe:/o:dell:emc_data_domain_os:-"/>
<param pos="0" name="hw.vendor" value="Data Domain"/>
<param pos="0" name="hw.product" value="DD OS"/>
<param pos="0" name="hw.device" value="Storage"/>
Expand Down Expand Up @@ -2245,6 +2246,7 @@
<example>TwonkyMedia server media browser</example>
<param pos="0" name="service.vendor" value="Lynx Technology"/>
<param pos="0" name="service.product" value="Twonky Media Server"/>
<param pos="0" name="service.cpe23" value="cpe:/a:lynxtechnology:twonky_server:-"/>
</fingerprint>

<fingerprint pattern="^Spiceworks(?: Server Busy| Help Desk)?$">
Expand Down Expand Up @@ -2349,6 +2351,9 @@
<description>OpenMediaVault</description>
<example host.name="raspberrypi">openmediavault control panel - raspberrypi</example>
<example host.name="raspberrypi">OpenMediaVault web administration interface - raspberrypi</example>
<param pos="0" name="service.vendor" value="OpenMediaVault"/>
<param pos="0" name="service.product" value="OpenMediaVault"/>
<param pos="0" name="service.cpe23" value="cpe:/a:openmediavault:openmediavault:-"/>
<param pos="0" name="os.vendor" value="OpenMediaVault"/>
<param pos="0" name="os.family" value="Linux"/>
<param pos="0" name="os.product" value="OpenMediaVault"/>
Expand Down Expand Up @@ -2395,13 +2400,15 @@
<param pos="0" name="service.vendor" value="CrushFTP"/>
<param pos="0" name="service.product" value="CrushFTP Web Interface"/>
<param pos="0" name="service.certainty" value="0.5"/>
<param pos="0" name="service.cpe23" value="cpe:/a:crushftp:crushftp:-"/>
</fingerprint>

<fingerprint pattern="^OpenEdge Explorer$">
<description>Progress OpenEdge Explorer</description>
<example>OpenEdge Explorer</example>
<param pos="0" name="service.vendor" value="Progress"/>
<param pos="0" name="service.product" value="OpenEdge Explorer"/>
<param pos="0" name="service.cpe23" value="cpe:/a:progress:openedge:-"/>
</fingerprint>

<fingerprint pattern="^Consul by HashiCorp$">
Expand Down Expand Up @@ -2447,7 +2454,8 @@
<example>Swagger UI</example>
<example>Swagger Editor</example>
<param pos="0" name="service.vendor" value="Swagger"/>
<param pos="0" name="service.product" value="UI"/>
<param pos="0" name="service.product" value="Swagger UI"/>
<param pos="0" name="service.cpe23" value="cpe:/a:smartbear:swagger_ui:-"/>
</fingerprint>

<fingerprint pattern="^Emby$">
Expand Down Expand Up @@ -2520,7 +2528,9 @@
<description>Metasploit Pro (and Community Edition Web UI)</description>
<example>Metasploit</example>
<param pos="0" name="service.vendor" value="Rapid7"/>
<param pos="0" name="service.product" value="Metasploit Pro"/>
<param pos="0" name="service.product" value="Metasploit"/>
<param pos="0" name="service.edition" value="Pro"/>
<param pos="0" name="service.cpe23" value="cpe:/a:rapid7:metasploit:-"/>
</fingerprint>

<fingerprint pattern="^Makito X Decoder$">
Expand Down Expand Up @@ -2564,6 +2574,7 @@
<param pos="0" name="service.vendor" value="ownCloud"/>
<param pos="0" name="service.product" value="ownCloud Server"/>
<param pos="0" name="service.certainty" value="0.5"/>
<param pos="0" name="service.cpe23" value="cpe:/a:owncloud:owncloud:-"/>
</fingerprint>

<fingerprint pattern="^Octopus Deploy$">
Expand Down Expand Up @@ -2593,8 +2604,9 @@
<example>TurnKey Moodle</example>
<example>New Site</example>
<param pos="0" name="service.vendor" value="Moodle"/>
<param pos="0" name="service.product" value="Moodle CMS"/>
<param pos="0" name="service.product" value="Moodle"/>
<param pos="0" name="service.certainty" value="0.5"/>
<param pos="0" name="service.cpe23" value="cpe:/a:moodle:moodle:-"/>
</fingerprint>

<fingerprint pattern="^ArchiveTeam Warrior$">
Expand Down Expand Up @@ -2647,6 +2659,7 @@
<example>Kodi</example>
<param pos="0" name="service.vendor" value="Kodi"/>
<param pos="0" name="service.product" value="Media Server"/>
<param pos="0" name="service.cpe23" value="cpe:/a:kodi:kodi:-"/>
</fingerprint>

<fingerprint pattern="^(?:Drupal|TurnKey Drupal\d+|Select an installation profile)$">
Expand All @@ -2657,6 +2670,7 @@
<example>Select an installation profile</example>
<param pos="0" name="service.vendor" value="Drupal"/>
<param pos="0" name="service.product" value="CMS"/>
<param pos="0" name="service.cpe23" value="cpe:/a:drupal:drupal:-"/>
</fingerprint>

<fingerprint pattern="^LibreNMS$">
Expand Down Expand Up @@ -2712,10 +2726,13 @@
<fingerprint pattern="^Pulse Connect Secure - SSL">
<description>Pulse Secure VPN</description>
<example>Pulse Connect Secure - SSL</example>
<param pos="0" name="service.vendor" value="Pulse Secure"/>
<param pos="0" name="service.product" value="Pulse Connect Secure"/>
<param pos="0" name="service.cpe23" value="cpe:/a:pulsesecure:pulse_connect_secure:-"/>
<param pos="0" name="os.vendor" value="Pulse Secure"/>
<param pos="0" name="os.family" value="SSL-VPN"/>
<param pos="0" name="os.device" value="SSL-VPN"/>
<param pos="0" name="os.product" value="SSL-VPN"/>
<param pos="0" name="os.product" value="Pulse Connect Secure"/>
</fingerprint>

</fingerprints>
5 changes: 4 additions & 1 deletion xml/http_cookies.xml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -156,10 +156,13 @@
<fingerprint pattern="^DSSignInURL=/">
<description>Pulse Secure VPN</description>
<example>DSSignInURL=/; path=/; secure</example>
<param pos="0" name="service.vendor" value="Pulse Secure"/>
<param pos="0" name="service.product" value="Pulse Connect Secure"/>
<param pos="0" name="service.cpe23" value="cpe:/a:pulsesecure:pulse_connect_secure:-"/>
<param pos="0" name="os.vendor" value="Pulse Secure"/>
<param pos="0" name="os.family" value="SSL-VPN"/>
<param pos="0" name="os.device" value="SSL-VPN"/>
<param pos="0" name="os.product" value="SSL-VPN"/>
<param pos="0" name="os.product" value="Pulse Connect Secure"/>
</fingerprint>

<fingerprint pattern="^(EktGUID|ecm)=.*">
Expand Down
Loading

0 comments on commit 5b9ccca

Please sign in to comment.