ge-aerospace/cve
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
master
cve/README.md
cproudlock 1e75818310 Add NinjaOne CVE resolution tool 
- ninjaone.py: API client and CVE analyzer
- Queries organizations, devices, OS/software patches
- Prioritizes CVEs by CVSS severity
- Generates remediation reports

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
2025-12-18 12:17:16 -05:00

1.5 KiB
Raw Permalink Blame History

CVE Resolution Tool for NinjaOne

Queries NinjaOne's REST API to aggregate CVE/vulnerability data across all organizations and prioritize remediation efforts.

Setup

  1. Copy config example and add your NinjaOne API credentials:

    cp config.example.py config.py

  2. Get API credentials from NinjaOne:

    • Go to Administration > Apps > API
    • Create a new API application (Client Credentials grant type)
    • Copy the Client ID and Client Secret

  3. Install dependencies:

    pip install -r requirements.txt

Usage

python ninjaone.py

NinjaOne API Endpoints Used

Endpoint Description
GET /api/v2/organizations List all organizations
GET /api/v2/devices-detailed List all devices with details
GET /api/v2/device/{id}/software Device software inventory
GET /api/v2/queries/os-patches OS patches report
GET /api/v2/queries/software-patches Third-party software patches
GET /api/v2/vulnerability/scan-groups Vulnerability scan data

Output

Generates a prioritized CVE remediation report showing:

  • Summary across all organizations
  • Patches grouped by CVSS severity (Critical/High/Medium/Low)
  • Critical items requiring immediate attention
  • Affected device counts

Resources

Reference in New Issue View Git Blame Copy Permalink