Last active
May 29, 2019 10:14
-
-
Save paralax/25f051bfce3122efd51629b58b38d9f0 to your computer and use it in GitHub Desktop.
check for software vulnerabilities on OSX
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| import glob | |
| import plistlib | |
| import sys | |
| import xml | |
| import requests | |
| class VulnScanner(object): | |
| def __init__(self): | |
| self.url = 'https://vulmon.com/scannerapi?product={0}&version={1}&dev=1' | |
| def vulnerabilityCheck(self, product, version): | |
| return requests.get(self.url.format(product, version)).json() | |
| def darwinSystemInfo(): | |
| # this just iterates over /usr/local/Cellar/$app/$version | |
| brews = [ x.split('/')[-2:] for x in glob.glob('/usr/local/Cellar/*/*') ] | |
| apps = [] | |
| for app in glob.glob("/Applications/*.app/Contents/Info.plist"): | |
| try: | |
| pl = plistlib.load(open(app, 'rb')) | |
| # some plists fail to have these values. wtf? idk why. | |
| appname, appver = pl.get('CFBundleName', False), pl.get('CFBundleShortVersionString', False) | |
| if appname and appver: | |
| apps.append([pl['CFBundleName'], pl['CFBundleShortVersionString']]) | |
| else: | |
| print('[!] Warning, error parsing {0}'.format(app), file=sys.stderr) | |
| except xml.parsers.expat.ExpatError as e: | |
| print('[!] Warning, error parsing {0}: {1}'.format(app, e), file=sys.stderr) | |
| return brews + apps | |
| def main(): | |
| scanner = VulnScanner() | |
| for app, ver in darwinSystemInfo(): | |
| print(app, ver) | |
| print(scanner.vulnerabilityCheck(app, ver)) | |
| if __name__ == '__main__': | |
| main() |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment