getExploit

:bomb: Download exploits from exploit-db.com


Project maintained by 0x7b4 Hosted on GitHub Pages — Theme by mattgraham

getExploit

Python script to explore exploits from exploit-db.com. Exist a similar script in Kali Linux, but in difference this python script will have provide more flexibility at search and download time.

Usage

Run the getExploit.py script to enter at text interface.

NOTE: If running for the first time, the script will automatically download the latest exploits archive at startup.

If you want to update the database downloaded from exploit-db.com, run getExploit.py updatedb and it will start the download of the latest exploit list from the website.

Searching exploits

The search command allows you to search for a given pattern in any field of the original exploit-db’s CSV file. The search query must be in the form of field_name:pattern couples, if no field name is given, description is the default.

Available fields are:

If the pattern you want to search contains spaces, you can quote it using either single or double quotes (see screenshot below).

It is also possible to search using a regular expression by enclosing your pattern in quotes (simple or double) and prefixing it with ‘r’.

To sum it up, here are the possible search formats:

Getting exploit infos

To show all the available details about an exploit, use the info command. This command takes a single argument, which is the ID of the exploit you want details for.

Updating database

Running the updatedb command will download the latest exploits archive from exploit-db.com and extract it in an exploits folder in current directory.

Licensing

This script is licensed under MIT terms.