Design and Implementation of a Software Vulnerabilities and Application Research Tool

Abstract

In a distributed environment that includes a large number of virtual machines managed by a single entity, maintaining an up-to-date inventory of the same is essential for several reasons. First of all, cybersecurity is an element of increasing importance that must necessarily be taken into consideration: in the event of a vulnerability, knowing quickly which virtual machines are affected in order to proceed with the fix minimizes problem resolution times and therefore the probability of attacks. Furthermore, knowing instantly which virtual machines contain certain versions of packages helps in identifying the best host on which to develop new projects according to specific needs. This paper proposes a possible solution already in use in a company that manages a considerable amount of servers and projects of decidedly heterogeneous types developed on them.