Vulnerability Development mailing list archives

Previous By Date Next
Previous By Thread Next

Re: vulnerability database

From: Michael.Russo2 () STORAGENETWORKS COM (Michael D. Russo)
Date: Thu, 17 Feb 2000 13:35:34 -0500

Why reinvent the wheel?  The emerging defacto standard in this are is the
Common Vulnerabilities and Exposures initiative at MITRE...

Compliance with this program has been or is being adopted by most of the
major InfoSec Tools vendors...

See http://cve.mitre.org/

HTH...

Michael D. Russo
Information Security Project Manager
Strategy & Engineering Department
Information Security Group
StorageNetworks, Inc.
100 Fifth Avenue, 3rd Floor "Area 21"
Waltham, Massachusetts USA 02451
Office:    (781) 434-6231
Fax:       (781) 434-6799
Reception: (781) 434-6700
Toll Free: (800) 463-7105
URL: http://www.storagenetworks.com/
EMAIL: mdrusso () storagenetworks com

-----Original Message-----
From: Ben Valenti [mailto:bvalenti () ETENSITY COM]
Sent: Wednesday, February 16, 2000 3:37 PM
To: VULN-DEV () SECURITYFOCUS COM
Subject: vulnerability database

I am in the process of creating a database of vulnerabilities/exploits.
I was wondering if anyone, who as attempted such a task, could give me
some description of their past experiences.  To start, advice/tips on
how to effectively structure the schema and where some good sources of
data for DB population can be found.  Also, are there any publically
available vuln./exp. DB's either provided by commercial businesses or
alternative sources?

Thanks,

_________________________________
Benjamin Valenti ~ Security Engineer
Etensity, Inc. ~ www.etensity.com
Direct: 703/827-5844 ~ Fax: 703/288-8234
Previous By Date Next
Previous By Thread Next

Current thread: