vulnpryer-cookbook
Deploys the VulnPryer suite.
Supported Platforms
- Ubuntu-12
- Ubuntu-14
- CentOS
- Amazon Linux
Attributes
Key | Type | Description | Default |
---|---|---|---|
['vulnpryer']['config']['s3']['aws_access_key_id'] | String | AWS Access Key to Post to S3 (will use IAM role creds if nil) | nil |
['vulnpryer']['config']['s3']['aws_secret_access_key_id'] | String | AWS Secret Key to Post to S3 (will use IAM role creds if nil) | nil |
Usage
vulnpryer::datadrive
Include vulnpryer
in your node's run_list
:
{
"run_list": [
"recipe[vulnpryer::datadrive]"
]
}
- Creates data path for Mongo instance
- Mounts EBS volume to data location
vulnpryer::default
Include vulnpryer
in your node's run_list
:
{
"run_list": [
"recipe[vulnpryer::default]"
]
}
- Creates VulnDB user and group
- Creates AWS credential file if specified (defaults to IAM role if nil)
- Installs python dependencies
- Installs vulnpryer tool chain
- Configures vulnpryer configuration file
vulnpryer::mount_snapshot
Create data directory for the VulnDB MongoDB and mount an EBS volume created from a static snapshot.
This recipe is intended to be used in place of datadrive
for exploratory data analysis of the VulnDB
database instead of updating the Mongo VulnDB repository.
{
"run_list": [
"recipe[vulnpryer::mount_snapshot]"
]
}
- Creates data path for Mongo instance
- Creates an EBS volume from a snapshot and mounts it to the data location
vulnpryer::run_immediate
Immediately run the vulnpryer.py wrapper script.
{
"run_list": [
"recipe[vulnpryer::default]"
]
}
### vulnpryer::schedule
Include `vulnpryer` in your node's `run_list`:
```json
{
"run_list": [
"recipe[vulnpryer::schedule]"
]
}
- Schedules daily updates from VulnDB
- Schedules weekly TRL updates
License and Authors
Author:: David F. Severski ([email protected])