Common Vulnerabilities and Exposures (CVE)

json feed of all apple related things. https://services.nvd.nist.gov/rest/json/cves/1.0?cpeMatchString=cpe:2.3:*:apple curl -s "https://services.nvd.nist.gov/rest/json/cves/1.0?cpeMatchString=cpe:2.3:*:apple" curl -s "https://services.nvd.nist.gov/rest/json/cves/1.0?cpeMatchString=cpe:2.3:*:apple:macOS:catalina" https://csrc.nist.gov/CSRC/media/Projects/National-Vulnerability-Database/documents/web%20service%20documentation/Automation%20Support%20for%20CVE%20Retrieval.pdf this is the documentation. of how to use their CVE feed hope this link works…

Log4j

Log4j lsof - list open files for log4j lsof | grep log4j https://github.com/isaacatmann/log4j-search/blob/main/log4j-search.sh https://community.jamf.com/t5/jamf-pro/log4j-vulnerability/m-p/254027 https://medium.com/@anchorbuoy_sftw/log4shell-log4j-zero-day-exploit-and-filemaker-server-e20ebe806e8a

Common Configuration Enumaration (CCE)

The Common Configuration Enumaration (CCE) List provides unique identifiers to security-related system configuration issues in order to improve workflow by facilitating fast and accurate correlation of configuration data across multiple…