Greenbone Networks
  • About ERT Cyber
  • Vulnerability Management
  • Products
    • Hardware Appliances
    • Virtual Appliances
    • ERT Cyber Cloud Service
  • Contact
    • Contact Us
  • Menu Menu

Use of Trademarks

“ERT Cyber” is a trademark of ERT Cyber Networks GmbH. The licensing of the software under free and open-source licenses does not imply a trademark license. Therefore any rights, title and interest in our trademarks remain entirely with us.

License Information for ERT Cyber Enterprise Feed

The ERT Cyber Enterprise Feed consists of four parts:

  • Vulnerability Tests
  • SCAP data
  • CERT data
  • Data objects which are distributed via the feed (scan configurations, compliance policies, port lists, report formats)

By purchasing a subscription from ERT Cyber Networks you accept our license terms as quoted below.
Furthermore you get access to our Service Level Agreement (SLA), for example the “ERT Cyber Support”.

Here you can learn more about the licenses of the four components and of ERT Cyber OS:

Vulnerability Tests

Below you find the content of the file “LICENSE”, which is included as part of the ERT Cyber Enterprise Feed and can be found at “/opt/greenbone/feed/plugins/” after regular installation. The accompanying file “LICENSE.GPLv2” is available for direct download below.

License information for ERT Cyber Enterprise Feed
-----------------------------------------------

The "ERT Cyber Enterprise Feed" ("Feed") as a whole is
a database that is protected by copyright law and which
consists of a collection of Vulnerability Tests (VTs).

The intellectual property in the database and in the majority
of the VTs are owned by ERT Cyber Networks. For each instance for
which the Feed is used, you have to purchase a suitable
subscription of ERT Cyber Networks (see reference below). 

The Feed as a whole must not be provided to third parties,
neither modified (for example by altering, adding or
removing VTs) nor unmodified. However, the license for
each single Vulnerability Test is the GNU General Public
License, Version 2 only (GNU GPLv2). Some VTs indicate additional
licenses as optional. You may modify and redistribute single
VTs according to the license conditions of the GNU GPL version 2
if not otherwise indicated.

GPLv2: See file LICENSE.GPLv2

For more information please contact ERT Cyber Networks GmbH:
https://greenbone.cablemanpro.com or info@greenbone.net
  • LICENSE: License Information for ERT Cyber Enterprise Feed
  • LICENSE.GPLv2: GNU General Public License version 2

SCAP Data

Below you find the content of the file “COPYING”, which is included as part of the ERT Cyber Enterprise Feed and can be found at “/opt/greenbone/feed/scap-data/” after regular installation.

This directory contains SCAP data provided by The MITRE Corporation and the
National Institute of Standards and Technology (NIST).

CVE is a publicly available and free to use list or dictionary of standardized
identifiers for common computer vulnerabilities and exposures. The master copy
of the CVE List is maintained for the community by MITRE. You may download the
CVE List, copy it, redistribute it, reference it, and analyze it, provided you
do not modify CVE itself as per the Terms of Use listed at
http://cve.mitre.org/about/termsofuse.html. For more details, visit
http://cve.mitre.org/.

CPE is a structured naming scheme for information technology systems, software,
and packages. This directory contains a copy of the official CPE Product
Dictionary. The dictionary provides an agreed upon list of official CPE names.
The dictionary is provided in XML format and is available to the general
public. The CPE Dictionary hosted and maintained at NIST may be used by
nongovernmental organizations on a voluntary basis and is not subject to
copyright in the United States. Attribution would, however, be appreciated by
NIST.  For more details, visit http://nvd.nist.gov/cpe.cfm.

OVAL is an information security community effort to standardize how to assess
and report upon the machine state of computer systems. It is international in
scope and free for public use. The OVAL Language and any resulting OVAL content
based upon the language that is stored in the OVAL Repository are free to use
by any organization or individual for any research, development, and/or
commercial purposes, per the Terms of Use listed at
http://oval.mitre.org/about/termsofuse.html. For more details, visit
http://oval.mitre.org/.

CERT Data

Below you find the content of the file “COPYING”, which is always included as part of the ERT Cyber Enterprise Feed and can be found at “/opt/greenbone/feed/cert-data/” after regular installation.

This directory contains advisory data from various CERTs (Computer Emergency
Response Team). Below is a list of the license notices from each CERT.

CERT-Bund (files CB-K*.xml)
---------------------------

This directory contains advisory data provided by the BSI. You are given the
non-exclusive, royalty-free license to download, copy, reference, analyze
and redistribute it. This data must not be modified and BSI's copyright
designation and license have to be reproduced in any copy.

DFN-CERT (files dfn-cert-*.xml)
-------------------------------

This directory contains advisory data provided by DFN-CERT Services GmbH
(DFN-CERT). This data is provided to allow a mapping between the CVE
dictionary and advisories as provided by DFN-CERT. You are given the
non-exclusive, royalty-free license to download it, copy it, redistribute it,
as the original mapping semantics are kept intact. DFN-CERT's copyright
designation and license have to be reproduced in any copy.

Data objects

Below you find the content of the file “LICENSE”, which is included as part of the ERT Cyber Enterprise Feed.

License information for ERT Cyber Enterprise Feed - Data Objects
-----------------------------------------------

The "ERT Cyber Enterprise Feed - Data Objects" ("Feed") as a whole
is a database that is protected by copyright law and which consists
of a collection of Data Objects (DOs).

The intellectual property in the database and in all DOs are owned
by ERT Cyber Networks. For each instance for which the Feed is used,
you have to purchase a suitable subscription of ERT Cyber Networks
(see reference below).

The Feed as a whole must not be provided to third parties, neither
modified (for example by altering, adding or removing DOs) nor
unmodified. However, the license for each single Data Object is the
GNU Affero General Public License Version 3 (GNU AGPLv3). Some DOs
indicate additional licenses as optional. You may modify and
redistribute single DOs according to the license conditions of the
GNU Affero General Public License Version 3 if not otherwise indicated.

AGPLv3: See file LICENSE.AGPLv3

For more information please contact ERT Cyber Networks GmbH:
https://greenbone.cablemanpro.com or info@greenbone.net

ERT Cyber OS

Below you find the content of the file “COPYING.GOS”, which can be found on ERT Cyber OS as file “/usr/share/doc/gsm-info/COPYING.GOS”.

ERT Cyber OS consists of a number of software packages, essentially based
on Debian GNU/Linux. You will find the license information for any package
under /usr/share/doc/PACKAGENAME/copyright. In essence you are permitted
to use the product for any purpose, but for redistribution you have
to consider the respective licenses conditions.

You are, however, not permitted to redistribute the ERT Cyber Enterprise Feed
access key which is part of a ERT Cyber Subscription. The key is located under
"/etc/gvm/". Customers who entered into a service Level Agreement are not
allowed to use the access key with more than one scan engine. In case of
non-compliance we reserve the right to terminate the Service Level Agreement.

For binaries that you receive from ERT Cyber that are licensed under any
version of the GNU General Public License (GPL), the GNU LGPL or GNU Affero
General Public License (AGPL), you can receive a complete machine-readable
copy of the source code by sending a written request to:

ERT Cyber Networks GmbH
Neumarkt 12
49074 Osnabrück
Germany

Your request should include: (i) the name of the covered binary, (ii) the
version number of the ERT Cyber product containing the covered binary,
(iii) your name, (iv) your company name (if applicable) and (v) your
return mailing and email address (if available).

We may charge you a nominal fee to cover the cost of the media and
distribution.

Your request must be sent within three (3) years of the date you received
the GPL or LGPL covered code.

For your convenience, some or all of the source code may also be found at:

https://docs.greenbone.net/index.html#source_code_documentation

Also for convenience, the source codes for all the operating system base
modules are generally available for immediate download.

You will find the license information for the ERT Cyber Enterprise Feed as
file LICENSE under "/opt/greenbone/feed/plugins/", and as file LICENSE
under "/opt/greenbone/feed/gvmd/".

License Information for ERT Cyber Community Feed

The ERT Cyber Community Feed consists of four parts:

  • Vulnerability Tests
  • SCAP data
  • CERT data
  • Data objects (scan configurations, compliance policies, port lists, report formats)

Here you can learn more about the licenses of the four components:

Vulnerability Tests

Below you find the content of the file “LICENSE”, which is included as part of the ERT Cyber Community Feed and can be found in the directory “plugins/” after regular installation. The accompanying files “LICENSE.GPLv2” and “LICENSE.ODbLv1” are available for direct download below.

License information for ERT Cyber Community Feed
-----------------------------------------------

The ERT Cyber Community Feed (GCF) is a database licensed 
under the Open Data Commons Open Database License version 1.0 (ODbLv1). 

The effective license for the Vulnerability Tests (VTs) within
the ERT Cyber Community Feed is the GNU General Public License Version 2 (GNU GPLv2).
The majority of VTs is licensed under "GNU GPLv2 or later" (GNU GPLv2+). 
A minority of the VTs is licensed under "GNU GPLv2" or under "GPLv2 or GPLv3".
You will find the actual license of each file in its header part. 

ODbLv1: See file LICENSE.ODbLv1
GPLv2: See file LICENSE.GPLv2 

The following text will satisfy notice under ODbLv1 Section 4.3:
Contains information from ERT Cyber Community Feed (GCF, https://greenbone.cablemanpro.com/en/gcf-odbl-license/) which is
made available here under the Open Database License (ODbL, https://opendatacommons.org/licenses/odbl/odbl-10.txt).

For more information please contact ERT Cyber Networks GmbH: 
https://greenbone.cablemanpro.com or info@greenbone.net
  • LICENSE: License Information for ERT Cyber Community Feed
  • LICENSE.GPLv2: GNU General Public License version 2
  • LICENSE.ODbLv1: Open Database License version 1

SCAP Data

Below you find the content of the file “COPYING”, which is included as part of the ERT Cyber Community Feed and can be found in the directory “scap-data/” after regular installation.

This directory contains SCAP data provided by The MITRE Corporation and the
National Institute of Standards and Technology (NIST).

CVE is a publicly available and free to use list or dictionary of standardized
identifiers for common computer vulnerabilities and exposures. The master copy
of the CVE List is maintained for the community by MITRE. You may download the
CVE List, copy it, redistribute it, reference it, and analyze it, provided you
do not modify CVE itself as per the Terms of Use listed at
http://cve.mitre.org/about/termsofuse.html. For more details, visit
http://cve.mitre.org/.

CPE is a structured naming scheme for information technology systems, software,
and packages. This directory contains a copy of the official CPE Product
Dictionary. The dictionary provides an agreed upon list of official CPE names.
The dictionary is provided in XML format and is available to the general
public. The CPE Dictionary hosted and maintained at NIST may be used by
nongovernmental organizations on a voluntary basis and is not subject to
copyright in the United States. Attribution would, however, be appreciated by
NIST.  For more details, visit http://nvd.nist.gov/cpe.cfm.

OVAL is an information security community effort to standardize how to assess
and report upon the machine state of computer systems. It is international in
scope and free for public use. The OVAL Language and any resulting OVAL content
based upon the language that is stored in the OVAL Repository are free to use
by any organization or individual for any research, development, and/or
commercial purposes, per the Terms of Use listed at
http://oval.mitre.org/about/termsofuse.html. For more details, visit
http://oval.mitre.org/.

CERT Data

Below you find the content of the file “COPYING”, which is always included as part of the ERT Cyber Community Feed and can be found in the directory “cert-data/” after regular installation.

This directory contains advisory data from various CERTs (Computer Emergency
Response Team). Below is a list of the license notices from each CERT.

CERT-Bund (files CB-K*.xml)
---------------------------

This directory contains advisory data provided by the BSI. You are given the
non-exclusive, royalty-free license to download, copy, reference, analyze
and redistribute it. This data must not be modified and BSI's copyright
designation and license have to be reproduced in any copy.

DFN-CERT (files dfn-cert-*.xml)
-------------------------------

This directory contains advisory data provided by DFN-CERT Services GmbH
(DFN-CERT). This data is provided to allow a mapping between the CVE
dictionary and advisories as provided by DFN-CERT. You are given the
non-exclusive, royalty-free license to download it, copy it, redistribute it,
as the original mapping semantics are kept intact. DFN-CERT's copyright
designation and license have to be reproduced in any copy.

Data objects

Below you find the content of the file “LICENSE”, which is always included as part of the ERT Cyber Community Feed and can be found in the directory “gvmd/” after regular installation.

License information for ERT Cyber Community Feed
------------------------------------------------

The ERT Cyber Community Feed (GCF) is a database licensed under the 
Open Data Commons Open Database License version 1.0 (ODbLv1).

The license for the ERT Cyber Vulnerability Manager daemon (gvmd) data objects of the 
ERT Cyber Community Feed is the GNU Affero General Public License Version 3 (GNU AGPLv3).

ODbLv1: See file LICENSE.ODbLv1
AGPLv3: See file LICENSE.AGPLv3

The following text will satisfy notice under ODbLv1 Section 4.3:

Contains information from ERT Cyber Community Feed (GCF, https://greenbone.cablemanpro.com/en/gcf-odbl-license/) which is
made available here under the Open Database License (ODbL, https://opendatacommons.org/licenses/odbl/odbl-10.txt).


For more information please contact ERT Cyber Networks GmbH:
https://greenbone.cablemanpro.com or info@greenbone.net

Open Source

We strongly believe in the open-source concept and are a major contributor to open-source communities ourselves. Therefore, we have made the ERT Cyber technology transparent, and anyone interested may audit our code base.

Products & Solutions

  • Hardware Appliances
  • Virtual Appliances
  • ERT Cloud Service
  • Vulnerability Management

About us

  • About ERT Cyber
  • Licence Information
  • Privacy Statement
  • Terms & Conditions

Contact us

  • Contact
© Copyright - ERT Cybersecurity 2026
  • LinkedIn
  • Xing
  • Twitter
  • Youtube
  • Mail
Scroll to top

This site is only using technically necessary cookies. By continuing to browse the site, you are agreeing to use this cookies.

Accept CookiesPrivacy policy

Cookie and Privacy Settings



How we use cookies

We may request cookies to be set on your device. We use cookies to let us know when you visit our websites, how you interact with us, to enrich your user experience, and to customize your relationship with our website.

Click on the different category headings to find out more. You can also change some of your preferences. Note that blocking some types of cookies may impact your experience on our websites and the services we are able to offer.

Essential Website Cookies

These cookies are strictly necessary to provide you with services available through our website and to use some of its features.

Because these cookies are strictly necessary to deliver the website, refuseing them will have impact how our site functions. You always can block or delete cookies by changing your browser settings and force blocking all cookies on this website. But this will always prompt you to accept/refuse cookies when revisiting our site.

We fully respect if you want to refuse cookies but to avoid asking you again and again kindly allow us to store a cookie for that. You are free to opt out any time or opt in for other cookies to get a better experience. If you refuse cookies we will remove all set cookies in our domain.

We provide you with a list of stored cookies on your computer in our domain so you can check what we stored. Due to security reasons we are not able to show or modify cookies from other domains. You can check these in your browser security settings.

Other external services

We also use different external services like Google Webfonts, Google Maps, and external Video providers. Since these providers may collect personal data like your IP address we allow you to block them here. Please be aware that this might heavily reduce the functionality and appearance of our site. Changes will take effect once you reload the page.

Google Webfont Settings:

Google Map Settings:

Google reCaptcha Settings:

Vimeo and Youtube video embeds:

Privacy Policy

You can read about our cookies and privacy settings in detail on our Privacy Policy Page.

Datenschutzerklärung
Einstellungen akzeptierenVerberge nur die Benachrichtigung
  • Deutsch
  • English