Exploit DB
https://tryhackme.com/room/introtoresearch
Description π
Exploit DB is a popular website to find exploitable CVEs with their PoC. There is a command-line version called searchsploit (7.6k β).
Search for an exploit given keywords:
$ searchsploit WordPress wpDiscuz # search
WordPress Plugin wpDiscuz 7.0.4 - Remote C | php/webapps/49967.py
$ searchsploit -p 49967 # locate
Path: /usr/share/exploitdb/exploits/php/webapps/49967.py
$ # copy, then edit, and use
$ cp /usr/share/exploitdb/exploits/php/webapps/49967.py /tmp/49967.py
Pro β
- ...
Cons β
- ...
Some exploits may be old, poorly documented, and need to be tuned before use, but that's not something exclusive to exploit db.
If searchsploit is not installed, try:
$ sudo apt install exploitdb -y
π» To-do π»
Stuff that I found, but never read/used yet.
-
searchsploit -t XXX --exclude=".py"