Skip to main content

VulnCheck

Threat Intelligence

The VulnCheck Connector integrates with the VulnCheck threat-intelligence platform and synchronizes vulnerability and exploit intelligence into Brinqa. It downloads VulnCheck's data export ("backup") indices over HTTPS and maps them to Brinqa UDM models, including:

  • CVE records enriched with NVD data, EPSS scores, CISA KEV / VulnCheck KEV details, exploit/weaponization signals, Microsoft KB threat data, and MITRE ATT&CK technique references.
  • CWE weaknesses from the MITRE CWE catalog.
  • CPE records from the VulnCheck CPE dictionary and the NVD CPE-match index.
  • EOL advisories describing end-of-life product releases.
  • MITRE ATT&CK techniques correlated to CVEs.
  • Vendor security advisories from more than twenty publishers (Adobe, Chrome, Cisco, Citrix, Dell, Fedora, GCP, GitHub, HP, IBM, Intel, Kubernetes, Linux, Microsoft, MongoDB, Mozilla, Netgear, Oracle, Palo Alto, PostgreSQL, Red Hat, SUSE, Ubuntu).

Each VulnCheck index is fetched as a ZIP archive, decompressed (some entries are further GZIP-compressed), parsed as JSON, and mapped to connector objects.


Data retrieved from VulnCheck

Connector ObjectRequiredMaps to Data Model
CVEYesCVE
CWEYesCWE
CPEYesCPE
CPE MatchYesCPE Match
EOL AdvisoryYesEOL Advisory
MITRE ATT&CK CVEYesMITRE ATT&CK CVE

Model relationships

note

For detailed steps on how to view the data retrieved from VulnCheck in the Brinqa Platform, see How to view your data.