exploitdb包装说明
检索归档来自该漏洞数据库。
作者:卡利的Linux
许可:GPL第二版
0x01 包含在exploitdb包工具
searchsploit - 实用工具来搜索漏洞数据库存档
root@kali:~# searchsploit -h
Usage: searchsploit [options] term1 [term2] ... [termN]
Example: searchsploit oracle windows local
=======
Options
=======
-c Perform case-sensitive searches; by default, searches will
try to be greedy
-h, --help Show help screen
-v By setting verbose output, description lines are allowed to
overflow their columns
*NOTES*
Use any number of search terms you would like (minimum of one).
Search terms are not case sensitive, and order is irrelevant.
0x02 exploitdb用法示例
搜索远程 Oracle利用的 Windows:
root@kali:~# searchsploit oracle windows remote
Description Path
----------------------------------------------------------------------------- ----------------------------------
Oracle XDB FTP Service UNLOCK Buffer Overflow Exploit | /windows/remote/80.c
Oracle 9.2.0.1 Universal XDB HTTP Pass Overflow Exploit | /windows/remote/1365.pm
Oracle 9i/10g ACTIVATE_SUBSCRIPTION SQL Injection Exploit | /windows/remote/3364.pl
Oracle WebLogic IIS connector JSESSIONID Remote Overflow Exploit | /windows/remote/8336.pl
Oracle Secure Backup Server 10.3.0.1.0 Auth Bypass/RCI Exploit | /windows/remote/9652.sh
文章来自 https://www.hackfun.org/kali-tools/exploitdb_zh.html,转载请注明原出处或联系原作者获得许可。