search
githubEdit

Exploit Research

hashtag
Top Resources

  • https://attackerkb.com/

  • https://ippsec.rocks/?#

  • Google the service and add exploit to the end!!!

hashtag
Search services vulnerabilities

searchsploit --exclude=dos -t apache 2.2.3
msfconsole; > search apache 2.2.3

hashtag
CVE Database

https://cve.mitre.org/cve/search_cve_list.html

hashtag
National Vulnerability Database (NVD)

  • U.S. Government Repository of standards based vulnerability management data represented using the Security Content Automation Protocol.

https://mvd.mist.gov/
https://nvd.nist.gov/general/visualizations

  • To show a visualization of CVSS’s Severity over time.

https://nvd.nist.gov/vuln/data-feeds

hashtag
CVE Details

hashtag
Exploit Database

  • Search by CVE and OSVDB identifier.

hashtag
Searchsploit by Exploit-db

  • Offline source for finding vulnerabilities and exploits.

  • To update the database:

  • Copy a searchsploit result to your present working directory

  • Alternative copy method

  • Exclude certain results like DOS or POC

  • Can print the file for an exploit

  • Exact match to your keyword input

  • Always start with specific and move to more general

hashtag
Working with exploits

  • Shebang

Previousrecon-enumerationNextPentesting DNS

Last updated