XML Schema Documentation

Table of Contents

top

Schema Document Properties

Target Namespace http://www.security-database.com/vdna/1.0
Element and Attribute Namespaces
  • Global element and attribute declarations belong to this schema's target namespace.
  • By default, local element declarations belong to this schema's target namespace.
  • By default, local attribute declarations have no namespace.
Schema Composition
  • This schema imports schema(s) from the following namespace(s):
    • http://www.w3.org/XML/1998/namespace (at http://www.w3.org/2001/xml.xsd)
Documentation This is an XML Schema for the V-DNA Dictionary. It is used to transfer full information about a single Alert. For more information, consult the V-DNA Specification document.

Changelog 1.92 : - Add CVSS v3 and remove CVSS v2 attributes. - Rename CVSS -> CVSSv2 - Remove some unecessary attributes / sources / url Changelog 1.91 : - Add Nessus information Changelog 1.9 : - Add SnortRules information Changelog 1.8 : - Add IAVM information Changelog 1.7 : - Add OpenVAS information Changelog 1.6 : - Add OVAL class miscellaneous Changelog 1.5 : - Added Security Protection Changelog 1.4 : - Added Exploitdb Changelog 1.3 : - More detailled attributes Changelog 1.2 : - Add CPE urls Changelog 1.1 : - Added Metasploit - Bug on Milw0rm url Changelog 1.0 : - VDNA First public release
Application Data <schema>
VDNA
</schema>
<author>
Security-Database
</author>
<version>
1.92
</version>
<date>
25/07/2014 17:00:00 PM
</date>

Declared Namespaces

Prefix Namespace
xml http://www.w3.org/XML/1998/namespace
xd http://www.w3.org/2001/XMLSchema
vdna_dict http://www.security-database.com/vdna/1.0
Schema Component Representation
<xd:schema targetNamespace="http://www.security-database.com/vdna/1.0" elementFormDefault="qualified" attributeFormDefault="unqualified">
<xd:import namespace="http://www.w3.org/XML/1998/namespace" schemaLocation="http://www.w3.org/2001/xml.xsd"/>
...
</xd:schema>
top

Global Declarations

Element: Alert

Name Alert
Type Locally-defined complex type
Nillable no
Abstract no
XML Instance Representation
<vdna_dict:Alert
name="anySimpleType [1] ?"
sdcon="xd:string (value comes from list: 'NA' | 'Low' | 'Medium' | 'High' | 'Critical') [1] ?"
modified="xd:date [1] ?"
url="xd:anyURI [1] ?"
published="xd:date [1] ?"
securityprotection="xd:string (value comes from list: 'NA' | 'ALLOWS_OTHER_ACCESS' | 'ALLOWS_USER_ACCESS' | 'ALLOWS_ADMIN_ACCESS') [1] ?"
md5="xd:string (length = 32) [1] ?">
<vdna_dict:CWEs> ... </vdna_dict:CWEs> [0..1]
<vdna_dict:CPEs> ... </vdna_dict:CPEs> [0..1]
<vdna_dict:OVALs> ... </vdna_dict:OVALs> [0..1]
<vdna_dict:IAVMs> ... </vdna_dict:IAVMs> [0..1]
</vdna_dict:Alert>
Schema Component Representation
<xd:element name="Alert">
<xd:complexType>
<xd:sequence>
<xd:element ref="vdna_dict:CVSSv2"/>
<xd:element ref="vdna_dict:CVSSv3"/>
<xd:element ref="vdna_dict:Description"/>
<xd:element ref="vdna_dict:Related_alerts"/>
<xd:element ref="vdna_dict:CWEs" minOccurs="0"/>
<xd:element ref="vdna_dict:CPEs" minOccurs="0"/>
<xd:element ref="vdna_dict:OVALs" minOccurs="0"/>
<xd:element ref="vdna_dict:CAPECs" minOccurs="0"/>
<xd:element ref="vdna_dict:SAINTEXPLOITs" minOccurs="0"/>
<xd:element ref="vdna_dict:OSVDBs" minOccurs="0"/>
<xd:element ref="vdna_dict:MILW0RMs" minOccurs="0"/>
<xd:element ref="vdna_dict:EXPLOITDBs" minOccurs="0"/>
<xd:element ref="vdna_dict:METASPLOITs" minOccurs="0"/>
<xd:element ref="vdna_dict:OPENVASs" minOccurs="0"/>
<xd:element ref="vdna_dict:IAVMs" minOccurs="0"/>
<xd:element ref="vdna_dict:SNORTs" minOccurs="0"/>
<xd:element ref="vdna_dict:NESSUSs" minOccurs="0"/>
</xd:sequence>
<xd:attribute name="name" use="required"/>
<xd:attribute name="sdcon" use="required">
<xd:simpleType>
<xd:restriction base="xd:string">
<xd:enumeration value="NA"/>
<xd:enumeration value="Low"/>
<xd:enumeration value="Medium"/>
<xd:enumeration value="High"/>
<xd:enumeration value="Critical"/>
</xd:restriction>
</xd:simpleType>
</xd:attribute>
<xd:attribute name="modified" type="xd:date" use="required"/>
<xd:attribute name="url" type="xd:anyURI" use="required"/>
<xd:attribute name="published" type="xd:date" use="required"/>
<xd:attribute name="securityprotection" use="required">
<xd:simpleType>
<xd:restriction base="xd:string">
<xd:enumeration value="NA"/>
<xd:enumeration value="ALLOWS_OTHER_ACCESS"/>
<xd:enumeration value="ALLOWS_USER_ACCESS"/>
<xd:enumeration value="ALLOWS_ADMIN_ACCESS"/>
</xd:restriction>
</xd:simpleType>
</xd:attribute>
<xd:attribute name="md5" use="required">
<xd:simpleType>
<xd:restriction base="xd:string">
<xd:length value="32"/>
</xd:restriction>
</xd:simpleType>
</xd:attribute>
</xd:complexType>
</xd:element>
top

Element: CAPECs

Name CAPECs
Type Locally-defined complex type
Nillable no
Abstract no
Documentation Common Attack Pattern Enumeration and Classification. http://capec.mitre.org/
XML Instance Representation
<vdna_dict:CAPECs>
<vdna_dict:CAPEC
id="xd:int (pattern = [0-9]+) (0 <= value <= 100000) [1]"
name="xd:string [1]"/> [0..*]
</vdna_dict:CAPECs>
Schema Component Representation
<xd:element name="CAPECs">
<xd:complexType>
<xd:sequence>
<xd:element name="CAPEC" minOccurs="0" maxOccurs="unbounded">
<xd:complexType>
<xd:attribute name="id" use="required">
<xd:simpleType>
<xd:restriction base="xd:int">
<xd:minInclusive value="0"/>
<xd:pattern value="[0-9]+"/>
<xd:maxInclusive value="100000"/>
</xd:restriction>
</xd:simpleType>
</xd:attribute>
<xd:attribute name="name" type="xd:string" use="required"/>
</xd:complexType>
</xd:element>
</xd:sequence>
</xd:complexType>
</xd:element>
top

Element: CPEs

Name CPEs
Type Locally-defined complex type
Nillable no
Abstract no
Documentation Common Platform Enumeration. http://cpe.mitre.org/
XML Instance Representation
<vdna_dict:CPEs>
<vdna_dict:CPE
name="xd:string [1]"/> [0..*]
</vdna_dict:CPEs>
Schema Component Representation
<xd:element name="CPEs">
<xd:complexType>
<xd:sequence>
<xd:element name="CPE" minOccurs="0" maxOccurs="unbounded">
<xd:complexType>
<xd:attribute name="name" type="xd:string" use="required"/>
</xd:complexType>
</xd:element>
</xd:sequence>
</xd:complexType>
</xd:element>
top

Element: CVSSv2

Name CVSSv2
Type Locally-defined complex type
Nillable no
Abstract no
Documentation Common Vulnerability Scoring System v2 (CVSS-SIG). http://www.first.org/
XML Instance Representation
<vdna_dict:CVSSv2
cvss_vector="xd:string [0..1] ?"/>
Schema Component Representation
<xd:element name="CVSSv2">
<xd:complexType>
<xd:attribute name="cvss_vector" type="xd:string"/>
</xd:complexType>
</xd:element>
top

Element: CVSSv3

Name CVSSv3
Type Locally-defined complex type
Nillable no
Abstract no
Documentation Common Vulnerability Scoring System v3 (CVSS-SIG). http://www.first.org/
XML Instance Representation
<vdna_dict:CVSSv3
cvss_vector="xd:string [0..1] ?"/>
Schema Component Representation
<xd:element name="CVSSv3">
<xd:complexType>
<xd:attribute name="cvss_vector" type="xd:string"/>
</xd:complexType>
</xd:element>
top

Element: CWEs

Name CWEs
Type Locally-defined complex type
Nillable no
Abstract no
Documentation Common Weakness Enumeration. http://cwe.mitre.org/
XML Instance Representation
<vdna_dict:CWEs>
<vdna_dict:CWE
id="xd:int (pattern = [0-9]+) (0 <= value <= 100000) [1]"
name="xd:string [1]"/> [0..*]
</vdna_dict:CWEs>
Schema Component Representation
<xd:element name="CWEs">
<xd:complexType>
<xd:sequence>
<xd:element name="CWE" minOccurs="0" maxOccurs="unbounded">
<xd:complexType>
<xd:attribute name="id" use="required">
<xd:simpleType>
<xd:restriction base="xd:int">
<xd:minInclusive value="0"/>
<xd:pattern value="[0-9]+"/>
<xd:maxInclusive value="100000"/>
</xd:restriction>
</xd:simpleType>
</xd:attribute>
<xd:attribute name="name" type="xd:string" use="required"/>
</xd:complexType>
</xd:element>
</xd:sequence>
</xd:complexType>
</xd:element>
top

Element: Description

Name Description
Type xd:string
Nillable no
Abstract no
XML Instance Representation
<vdna_dict:Description> xd:string </vdna_dict:Description>
Schema Component Representation
<xd:element name="Description" type="xd:string"/>
top

Element: EXPLOITDBs

Name EXPLOITDBs
Type Locally-defined complex type
Nillable no
Abstract no
Documentation Exploitdb exploits and 0day exploits database
XML Instance Representation
<vdna_dict:EXPLOITDBs>
<vdna_dict:EXPLOITDB
id="xd:string [1]"
source="xd:string (value comes from list: 'EXPLOITDB') [1]"
name="xd:string [1]"
url="xd:anyURI [1]"/> [0..*]
</vdna_dict:EXPLOITDBs>
Schema Component Representation
<xd:element name="EXPLOITDBs">
<xd:complexType>
<xd:sequence>
<xd:element name="EXPLOITDB" minOccurs="0" maxOccurs="unbounded">
<xd:complexType>
<xd:attribute name="id" type="xd:string" use="required"/>
<xd:attribute name="source" use="required">
<xd:simpleType>
<xd:restriction base="xd:string">
<xd:enumeration value="EXPLOITDB"/>
</xd:restriction>
</xd:simpleType>
</xd:attribute>
<xd:attribute name="name" type="xd:string" use="required"/>
<xd:attribute name="url" type="xd:anyURI" use="required"/>
</xd:complexType>
</xd:element>
</xd:sequence>
</xd:complexType>
</xd:element>
top

Element: IAVMs

Name IAVMs
Type Locally-defined complex type
Nillable no
Abstract no
Documentation Information Assurance Vulnerability Management (IAVM)
XML Instance Representation
<vdna_dict:IAVMs>
<vdna_dict:IAVM
source="xd:string (value comes from list: 'DISA') [1]"
IAVM="xd:string [1]"
severity="xd:string [0..1]"
title="xd:string [0..1]"
VMSKEY="xd:string [0..1]"
date="xd:date [0..1]"/> [0..*]
</vdna_dict:IAVMs>
Schema Component Representation
<xd:element name="IAVMs">
<xd:complexType>
<xd:sequence>
<xd:element name="IAVM" minOccurs="0" maxOccurs="unbounded">
<xd:complexType>
<xd:attribute name="source" use="required">
<xd:simpleType>
<xd:restriction base="xd:string">
<xd:enumeration value="DISA"/>
</xd:restriction>
</xd:simpleType>
</xd:attribute>
<xd:attribute name="IAVM" type="xd:string" use="required"/>
<xd:attribute name="severity" type="xd:string"/>
<xd:attribute name="title" type="xd:string"/>
<xd:attribute name="VMSKEY" type="xd:string"/>
<xd:attribute name="date" type="xd:date"/>
</xd:complexType>
</xd:element>
</xd:sequence>
</xd:complexType>
</xd:element>
top

Element: METASPLOITs

Name METASPLOITs
Type Locally-defined complex type
Nillable no
Abstract no
Documentation METASPLOIT exploits and 0day exploits database
XML Instance Representation
<vdna_dict:METASPLOITs>
<vdna_dict:METASPLOIT
source="xd:string (value comes from list: 'METASPLOIT') [1]"
name="xd:string [1]"
description="xd:string [0..1]"
url="xd:anyURI [1]"
date="xd:date [0..1]"/> [0..*]
</vdna_dict:METASPLOITs>
Schema Component Representation
<xd:element name="METASPLOITs">
<xd:complexType>
<xd:sequence>
<xd:element name="METASPLOIT" minOccurs="0" maxOccurs="unbounded">
<xd:complexType>
<xd:attribute name="source" use="required">
<xd:simpleType>
<xd:restriction base="xd:string">
<xd:enumeration value="METASPLOIT"/>
</xd:restriction>
</xd:simpleType>
</xd:attribute>
<xd:attribute name="name" type="xd:string" use="required"/>
<xd:attribute name="description" type="xd:string"/>
<xd:attribute name="url" type="xd:anyURI" use="required"/>
<xd:attribute name="date" type="xd:date"/>
</xd:complexType>
</xd:element>
</xd:sequence>
</xd:complexType>
</xd:element>
top

Element: MILW0RMs

Name MILW0RMs
Type Locally-defined complex type
Nillable no
Abstract no
Documentation Milw0rm exploits and 0day exploits database
XML Instance Representation
<vdna_dict:MILW0RMs>
<vdna_dict:MILW0RM
id="xd:string [1]"
source="xd:string (value comes from list: 'MILW0RM') [1]"
name="xd:string [1]"
url="xd:anyURI [1]"/> [0..*]
</vdna_dict:MILW0RMs>
Schema Component Representation
<xd:element name="MILW0RMs">
<xd:complexType>
<xd:sequence>
<xd:element name="MILW0RM" minOccurs="0" maxOccurs="unbounded">
<xd:complexType>
<xd:attribute name="id" type="xd:string" use="required"/>
<xd:attribute name="source" use="required">
<xd:simpleType>
<xd:restriction base="xd:string">
<xd:enumeration value="MILW0RM"/>
</xd:restriction>
</xd:simpleType>
</xd:attribute>
<xd:attribute name="name" type="xd:string" use="required"/>
<xd:attribute name="url" type="xd:anyURI" use="required"/>
</xd:complexType>
</xd:element>
</xd:sequence>
</xd:complexType>
</xd:element>
top

Element: NESSUSs

Name NESSUSs
Type Locally-defined complex type
Nillable no
Abstract no
Documentation NessusĀ®
XML Instance Representation
<vdna_dict:NESSUSs>
<vdna_dict:NESSUS
source="xd:string (value comes from list: 'NESSUS') [1]"
nessusid="xd:int [1]"
name="xd:string [0..1]"
date="xd:date [0..1]"/> [0..*]
</vdna_dict:NESSUSs>
Schema Component Representation
<xd:element name="NESSUSs">
<xd:complexType>
<xd:sequence>
<xd:element name="NESSUS" minOccurs="0" maxOccurs="unbounded">
<xd:complexType>
<xd:attribute name="source" use="required">
<xd:simpleType>
<xd:restriction base="xd:string">
<xd:enumeration value="NESSUS"/>
</xd:restriction>
</xd:simpleType>
</xd:attribute>
<xd:attribute name="nessusid" type="xd:int" use="required"/>
<xd:attribute name="name" type="xd:string"/>
<xd:attribute name="date" type="xd:date"/>
</xd:complexType>
</xd:element>
</xd:sequence>
</xd:complexType>
</xd:element>
top

Element: OPENVASs

Name OPENVASs
Type Locally-defined complex type
Nillable no
Abstract no
Documentation OPENVAS database
XML Instance Representation
<vdna_dict:OPENVASs>
<vdna_dict:OPENVAS
source="xd:string (value comes from list: 'OPENVAS') [1]"
name="xd:string [1]"
file="xd:string [0..1]"
date="xd:date [0..1]"/> [0..*]
</vdna_dict:OPENVASs>
Schema Component Representation
<xd:element name="OPENVASs">
<xd:complexType>
<xd:sequence>
<xd:element name="OPENVAS" minOccurs="0" maxOccurs="unbounded">
<xd:complexType>
<xd:attribute name="source" use="required">
<xd:simpleType>
<xd:restriction base="xd:string">
<xd:enumeration value="OPENVAS"/>
</xd:restriction>
</xd:simpleType>
</xd:attribute>
<xd:attribute name="name" type="xd:string" use="required"/>
<xd:attribute name="file" type="xd:string"/>
<xd:attribute name="date" type="xd:date"/>
</xd:complexType>
</xd:element>
</xd:sequence>
</xd:complexType>
</xd:element>
top

Element: OSVDBs

Name OSVDBs
Type Locally-defined complex type
Nillable no
Abstract no
Documentation Open Source Vunerability Database (OSVDB) Mapping
XML Instance Representation
<vdna_dict:OSVDBs>
<vdna_dict:OSVDB
id="xd:int (pattern = [0-9]+) (0 <= value <= 100000) [1]"
source="xd:string (value comes from list: 'OSVDB') [1]"
name="xd:string [1]"
url="xd:anyURI [1]"/> [0..*]
</vdna_dict:OSVDBs>
Schema Component Representation
<xd:element name="OSVDBs">
<xd:complexType>
<xd:sequence>
<xd:element name="OSVDB" minOccurs="0" maxOccurs="unbounded">
<xd:complexType>
<xd:attribute name="id" use="required">
<xd:simpleType>
<xd:restriction base="xd:int">
<xd:minInclusive value="0"/>
<xd:pattern value="[0-9]+"/>
<xd:maxInclusive value="100000"/>
</xd:restriction>
</xd:simpleType>
</xd:attribute>
<xd:attribute name="source" use="required">
<xd:simpleType>
<xd:restriction base="xd:string">
<xd:enumeration value="OSVDB"/>
</xd:restriction>
</xd:simpleType>
</xd:attribute>
<xd:attribute name="name" type="xd:string" use="required"/>
<xd:attribute name="url" type="xd:anyURI" use="required"/>
</xd:complexType>
</xd:element>
</xd:sequence>
</xd:complexType>
</xd:element>
top

Element: OVALs

Name OVALs
Type Locally-defined complex type
Nillable no
Abstract no
Documentation Open Vulnerability and Assessment Language; OVAL is an international, information security, community standard to promote open and publicly available security content, and to standardize the transfer of this information across the entire spectrum of security tools and services. http://oval.mitre.org/
XML Instance Representation
<vdna_dict:OVALs>
<vdna_dict:OVAL
id="xd:string [1]"
name="xd:string [0..1]"
class="xd:string (value comes from list: 'vulnerability' | 'inventory' | 'patch' | 'compliance' | 'miscellaneous') (Whitespace policy: preserve) [0..1] ?"/> [0..*]
</vdna_dict:OVALs>
Schema Component Representation
<xd:element name="OVALs">
<xd:complexType>
<xd:sequence>
<xd:element name="OVAL" minOccurs="0" maxOccurs="unbounded">
<xd:complexType>
<xd:attribute name="id" use="required">
<xd:simpleType>
<xd:restriction base="xd:string"/>
</xd:simpleType>
</xd:attribute>
<xd:attribute name="name" type="xd:string"/>
<xd:attribute name="class">
<xd:simpleType>
<xd:restriction base="xd:string">
<xd:enumeration value="vulnerability"/>
<xd:enumeration value="inventory"/>
<xd:enumeration value="patch"/>
<xd:whiteSpace value="preserve"/>
<xd:enumeration value="compliance"/>
<xd:enumeration value="miscellaneous"/>
</xd:restriction>
</xd:simpleType>
</xd:attribute>
</xd:complexType>
</xd:element>
</xd:sequence>
</xd:complexType>
</xd:element>
top

Element: Related_alerts

Name Related_alerts
Type Locally-defined complex type
Nillable no
Abstract no
Documentation Security-database Crosslinker Engine
XML Instance Representation
Schema Component Representation
top

Element: SAINTEXPLOITs

Name SAINTEXPLOITs
Type Locally-defined complex type
Nillable no
Abstract no
Documentation SAINT Corporation Exploit Database
XML Instance Representation
<vdna_dict:SAINTEXPLOITs>
<vdna_dict:SAINTEXPLOIT
id="xd:string [1]"
source="xd:string (value comes from list: 'SAINT Corposation') [1]"
name="xd:string [1]"
url="xd:anyURI [1]"/> [0..*]
</vdna_dict:SAINTEXPLOITs>
Schema Component Representation
<xd:element name="SAINTEXPLOITs">
<xd:complexType>
<xd:sequence>
<xd:element name="SAINTEXPLOIT" minOccurs="0" maxOccurs="unbounded">
<xd:complexType>
<xd:attribute name="id" type="xd:string" use="required"/>
<xd:attribute name="source" use="required">
<xd:simpleType>
<xd:restriction base="xd:string">
<xd:enumeration value="SAINT Corposation"/>
</xd:restriction>
</xd:simpleType>
</xd:attribute>
<xd:attribute name="name" type="xd:string" use="required"/>
<xd:attribute name="url" type="xd:anyURI" use="required"/>
</xd:complexType>
</xd:element>
</xd:sequence>
</xd:complexType>
</xd:element>
top

Element: SNORTs

Name SNORTs
Type Locally-defined complex type
Nillable no
Abstract no
Documentation SnortĀ® IPS/IDS Rules
XML Instance Representation
<vdna_dict:SNORTs>
<vdna_dict:SNORT
source="xd:string (value comes from list: 'SNORT') [1]"
ruleid="xd:string [1]"
description="xd:string [0..1]"
type="xd:string [0..1]"
rev="xd:string [0..1]"
date="xd:date [0..1]"/> [0..*]
</vdna_dict:SNORTs>
Schema Component Representation
<xd:element name="SNORTs">
<xd:complexType>
<xd:sequence>
<xd:element name="SNORT" minOccurs="0" maxOccurs="unbounded">
<xd:complexType>
<xd:attribute name="source" use="required">
<xd:simpleType>
<xd:restriction base="xd:string">
<xd:enumeration value="SNORT"/>
</xd:restriction>
</xd:simpleType>
</xd:attribute>
<xd:attribute name="ruleid" type="xd:string" use="required"/>
<xd:attribute name="description" type="xd:string"/>
<xd:attribute name="type" type="xd:string"/>
<xd:attribute name="rev" type="xd:string"/>
<xd:attribute name="date" type="xd:date"/>
</xd:complexType>
</xd:element>
</xd:sequence>
</xd:complexType>
</xd:element>
top

Element: generator

Name generator
Type Locally-defined complex type
Nillable no
Abstract no
XML Instance Representation
<vdna_dict:generator>
<vdna_dict:timestamp> xd:dateTime </vdna_dict:timestamp> [1]
</vdna_dict:generator>
Schema Component Representation
<xd:element name="generator">
<xd:complexType>
<xd:sequence>
<xd:element name="timestamp" type="xd:dateTime"/>
</xd:sequence>
</xd:complexType>
</xd:element>
top

Element: user_info

Name user_info
Type Locally-defined complex type
Nillable no
Abstract no
XML Instance Representation
<vdna_dict:user_info
date="xd:dateTime [1] ?"
module_id="xd:string (length = 32) [1] ?"/>
Schema Component Representation
<xd:element name="user_info">
<xd:complexType>
<xd:attribute name="date" type="xd:dateTime" use="required"/>
<xd:attribute name="module_id" use="required">
<xd:simpleType>
<xd:restriction base="xd:string">
<xd:length value="32"/>
</xd:restriction>
</xd:simpleType>
</xd:attribute>
</xd:complexType>
</xd:element>
top

Element: vdna

Name vdna
Type Locally-defined complex type
Nillable no
Abstract no
XML Instance Representation
<vdna_dict:vdna>
</vdna_dict:vdna>
Schema Component Representation
<xd:element name="vdna">
<xd:complexType>
<xd:sequence>
<xd:element ref="vdna_dict:Alert"/>
</xd:sequence>
</xd:complexType>
</xd:element>
top