Skip to content

Dynatrace-Asad-Ali/appsecutil

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

14 Commits
.github/workflows
.github/workflows
 
 
.goreleaser.yml
.goreleaser.yml
 
 
README.md
README.md
 
 
go.mod
go.mod
 
 
main.go
main.go
 
 

Repository files navigation

appsecutil

This repo contains utility to pull AppSec data from Dynatrace using REST API. In order to use this utility, you would need 2 items:

Name Description
Dynatrace tenant url Managed https://{your-domain}/e/{your-environment-id}
SaaS https://{your-environment-id}.live.dynatrace.com
API Token You need the Write configuration (WriteConfig) permission assigned to your API token

The API Token needs to have these minimum permissions:

API v2

  • Read Entities
  • Read Security Problems

API v1

  • Access Problem and event feed, metrics and topology

You can download the utility for you OS here. Unzip the zip file before running the utility.

Usage

To run the utility execute the following command

appsec_\<version\> -url <Dynatrace tenant url including https://> -token \<token\> {-showOnlyExposedEntities|-showAllEntities}

This also allows you to filter the results by CVEIDS. To use the filter use the following command

appsec_\<version\> -url <Dynatrace tenant url including https://> -token \<token\> {-showOnlyExposedEntities|-showAllEntities} -filter={CVE-IDS that are comma separated}

Example

If you want to search for all processes that are affected by CVE-2021-44228, use the following command

appsec_\<version\> -url <Dynatrace tenant url including https://> -token \<token\> -showAllEntities -filter=CVE-2021-44228

If you want to search for all processes that are affected by CVE-2021-44228 and CVE-2021-45105 use the following command

appsec_\<version\> -url <Dynatrace tenant url including https://> -token \<token\> -showAllEntities -filter=CVE-2021-44228,CVE-2021-45105

This utility generates an output to the console in the following format

Status,SecurityProblemId,CVE-ID,ProcessName,HostName


The utility also allows you to pass the Dynatrace url and the token as an environment variable instead of providing these values at command line. To use the environment variables instead, please set these 2 environment variables before running the command: * DT_URL * DT_TOKEN

If you provide environment variables and also provide the "-url" and "-token" at the command line, the environment varialbe will take precedence. You can also mix and match the environment variable and the command line argument. For example, you can provide "-url" to the command line and provide token as an environment variable.

About

No description, website, or topics provided.

Resources

Readme
Activity

Stars

1 star

Watchers

1 watching

Forks

0 forks
Report repository

Releases 4

v0.4 Latest
Jan 7, 2022
+ 3 releases

Packages

No packages published

Languages