Expand description
OffSeq Threat Finder — library crate.
The engine (API client, version/constraint matcher, per-OS discovery,
package inventory, and network-exposure correlation) lives here so it is
reusable and integration-testable; the threat-finder binary is a thin CLI
over it.
Re-exports§
pub use scan::Asset;pub use scan::Collector;pub use scan::Ecosystem;pub use scan::ScanScope;pub use scan::Source;pub use api::*;pub use engine::*;
Modules§
- api
- auth
- cpe
- CPE 2.3 construction for Windows inventory.
- engine
- Host engine: OS detection, service discovery, binary resolution, version
sourcing (package DB first,
--versionprobe as fallback), and network-exposure correlation. Pure host interaction — no API types. - sarif
- SARIF 2.1.0 serialization, so findings surface in code-scanning UIs (GitHub Advanced Security, Azure DevOps, etc.).
- scan
- Asset / Collector abstraction.
- windows
- Windows host discovery.