Grouping multiple (vulnerable) programs

  • VulnDetect Team Member

    group multiple instances of a vulnerable program in the listing and allow me to expand that section when I want

    Suggested by @CTaylor

  • Community Moderator

    I have some enhancements for the grouping feature:

    • For grouped applications show just one entry (like "Microsoft Office 2016") and in front of this entry show a [+] icon, so the entry can be expanded and collapsed.
      If users expand it, they see all applications bundled with that product

    • Show all applications (so don't hide any applications) but show them grouped.

    Here are some examples:

    • SecTeer VulnDetect
      • 7-Zip (C:\Users\All Users\chocolatey\tools\7z.exe)
      • 7-Zip (C:\ProgramData\chocolatey\tools\7z.exe)
      • chocolatey (C:\Users\All Users\chocolatey\choco.exe)
      • chocolatey (C:\ProgramData\chocolatey\choco.exe)

    • NVIDIA GeForce Experience
      • 7-Zip (C:\Users\All Users\NVIDIA Corporation\Downloader\PostProcessing\GFE\a5c55c300a0970b183a69782967dfc59\GFExperience\7z.exe)
      • 7-Zip (C:\ProgramData\NVIDIA Corporation\Downloader\PostProcessing\GFE\a5c55c300a0970b183a69782967dfc59\GFExperience\7z.exe)
      • 7-Zip (C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\7z.exe)

    • Windows 10 Professional
      • Adobe Flash Player (C:\Windows\System32\Macromed\Flash\Flash.ocx)
      • Adobe Flash Player (C:\Windows\SysWOW64\Macromed\Flash\Flash.ocx)
      • curl (C:\Windows\System32\curl.exe)
      • curl (C:\Windows\SysWOW64\curl.exe)
      • Microsoft OneDrive (C:\Users\user1\AppData\Local\Microsoft\OneDrive\OneDrive.exe)
      • Microsoft OneDrive (C:\Users\user2\AppData\Local\Microsoft\OneDrive\OneDrive.exe)
      • Microsoft OneDrive (C:\Users\user3\AppData\Local\Microsoft\OneDrive\OneDrive.exe)
      • Microsoft Silverlight (C:\Program Files (x86)\Microsoft Silverlight\sllauncher.exe)
      • Microsoft Silverlight (C:\Program Files\Microsoft Silverlight\sllauncher.exe)
      • OpenSSH for Windows (C:\Windows\System32\OpenSSH\ssh.exe)

    • Google Chrome
      • Adobe Flash Player (C:\Users\user1\AppData\Local\Google\Chrome\User Data\PepperFlash\\pepflashplayer.dll)
      • Adobe Flash Player (C:\Users\user2\AppData\Local\Google\Chrome\User Data\PepperFlash\\pepflashplayer.dll)
      • Adobe Flash Player (C:\Users\user3\AppData\Local\Google\Chrome\User Data\PepperFlash\\pepflashplayer.dll)

    • Star Citizen
      • 7-Zip (E:\StarCitizen\RSI Launcher\resources\app.asar.unpacked\node_modules\7zip\7zip-lite\7z.exe)

  • Community Moderator

    @tom said in Grouping multiple (vulnerable) programs:

    However, this is still several weeks away.

    No problem, important is that you have it on your To-Do list.

  • VulnDetect Team Member

    We are planning something along the lines of this, where VulnDetect will group dependencies and possible product bundles as well.

    However, this is still several weeks away.

  • Community Moderator

    Currently I have in VulnDetect the following applications:

    • Microsoft Office 2016
    • Microsoft Access 2016
    • Microsoft Excel 2016
    • Microsoft OneNote 2016
    • Microsoft Outlook 2016
    • Microsoft PowerPoint 2016
    • Microsoft Publisher 2016
    • Microsoft Word 2016

    It would be cool to see only one entry called Microsoft Office 2016 that can be expanded to see all enclosed products.

  • Community Moderator

    Very useful idea, especially for applications that are bundled with other apps (like 7-Zip is delivered with the NVIDIA Drivers).
    So I see 7-Zip only once, but can expand the entry.

    But this feature could also be used to group bundled applications, like Microsoft Office.
    I see an entry Microsoft Office 2016 and can expand it.
    Here I see all apps of the bundle, like Word, Excel, PowerPoint and so on.