帮酷LOGO
0 0 评论
  • 显示原文与译文双语对照的内容
文章标签:漏洞  EXP  数据  搜索  
Search exploits in multiple exploit databases!

  • 源代码名称:XPL-SEARCH
  • 源代码网址:http://www.github.com/CoderPirata/XPL-SEARCH
  • XPL-SEARCH源代码文档
  • XPL-SEARCH源代码下载
  • Git URL:
    git://www.github.com/CoderPirata/XPL-SEARCH.git
  • Git Clone代码到本地:
    git clone http://www.github.com/CoderPirata/XPL-SEARCH
  • Subversion代码到本地:
    $ svn co --depth empty http://www.github.com/CoderPirata/XPL-SEARCH
    Checked out revision 1.
    $ cd repo
    $ svn up trunk
    
  • XPL搜索
    
    Search exploits/vulnerabilities in multiple databases online!
    
    
    
    XPL SEARCH is a multiplatform tool(Windows and Linux), which was developed in PHP with the aim of helping the hacker 
    
    
    community to find exploits or 'vulnerabilities', using online databases, below is the list of databases which 
    
    
    can be used in this release:
    
    
    1. Exploit-DB
    
    
    2. MIlw00rm
    
    
    3. PacketStormSecurity
    
    
    4. IntelligentExploit
    
    
    5. IEDB
    
    
    6. CVE
    
    
    7. Siph0n
    
    
    
    The tool offers several options, such as:
    
    
    * Search individual.
    
    
    * Search with multiple words(list).
    
    
    * Select which databases will be used for research.
    
    
    * Filter to remove repeatable results.
    
    
    * Blocking specific databases.
    
    
    * Save log with the survey data.
    
    
    * Save the exploits/vulnerabilities found.
    
    
    * Use of proxy.
    
    
    * Set the time that the databases have to answer.
    
    
    * Conduct research just indicating the author's name.
    
    
    * Disable display of the banner.
    
    
    
    Simple use: php xpl_search.php [command] [term]
    
    
     Ex: php xpl_search.php --search WordPress
    
    
    
    Video demonstrating a simple search: https://www.youtube.com/watch?v=Ja_yTWBR1eE
    
    
    
    

    运行脚本

    
    To use all the features as the tool provides, the following is recommended:
    
    
    PHP Version(cli) 5.5.8 or higher
    
    
     php5-cli Lib
    
    
    cURL support Enabled
    
    
     php5-curl Lib
    
    
    cURL Version 7.40.0 or higher
    
    
    allow_url_fopen On
    
    
    Permission Writing & Reading
    
    
    
    Dependencies necessary:
    
    
    php5
    
    
    php5-cli
    
    
    php5-curl
    
    
    curl
    
    
    libcurl3
    
    
    
    If you are unsure if the dependencies are installed, run the following command(Only for linux):
    
    
     php"xpl search.php" --install-dependencie
    
    
    Or run in terminal: sudo apt-get install php5 php5-cli php5-curl curl libcurl3
    
    
    
    

    changelog变更日志"

    
    0.1 - [02/07/2015]
    
    
    - Started.
    
    
    
    0.2 - [12/07/2015]
    
    
    - Added Exploit-DB.
    
    
    - Added Colors, only for linux!
    
    
    - Added Update Function.
    
    
    -"Generator" of User-Agent reworked.
    
    
    - Small errors and adaptations.
    
    
    
    0.3 - [22/07/2015]
    
    
    - Bugs solved.
    
    
    - Added"save" Function.
    
    
    - Added"set-db" function.
    
    
    
    0.4 - [05/08/2015]
    
    
    - Save function modified.
    
    
    - Added search with list.
    
    
    
    0.5 - [29/08/2015]
    
    
    - Added search by Author.
    
    
    
    0.6 - [09/09/2015]
    
    
    - Changes in search logs.
    
    
    - Now displays the author of the exploit.
    
    
     * Does not work with IntelligentExploit.
    
    
    
    0.7 - [11/09/2015]
    
    
    - Added search in CVE.
    
    
     * ID.
    
    
     * Simple search - id 6.
    
    
    - Bug in exploit-db search,"papers" fixed.
    
    
    - Added standard time of 60 seconds for each request.
    
    
    - file_get_contents() was removed from"browser()".
    
    
    - Code of milw00rm search has been modified.
    
    
    - Changes in search logs.
    
    
    - Added date.
    
    
    
    0.7.1 - [17/09/2015]
    
    
    - Bug in milw00rm solved.
    
    
    
    0.8 - [05/10/2015]
    
    
    - Added shebang.
    
    
    - Commands"save","save-log" and"save-dir" have been modified.
    
    
    - Added"no-db" option.
    
    
    - GETOPT() modified - Thanks Jack2.
    
    
    - Bug on save-dir solved.
    
    
    - Others minor bugs solved.
    
    
    
    0.9 - [19/11/2015]
    
    
    - Added Siph0n database - ID 7.
    
    
    - Update reworked.
    
    
    - Comment in script updated.
    
    
    - Adjustment in translation on"help page" - Thanks j3gb0.
    
    
    - Milw00rm domain changed.
    
    
    
    1.0 - [07/02/2016]
    
    
    - Added Dependencies installation function.
    
    
    - Added Color Theme function.
    
    
    - Added command to force update.
    
    
    - Exploit-DB function reworked.
    
    
    - Added Filter function
    
    
    - Minor bugs and adaptations solved.
    
    
    
    

    开发人员

    
    Author_Nick CoderPIRATA
    
    
    Author_Name Eduardo
    
    
    Email coderpirata@gmail.com
    
    
    Blog http://coderpirata.blogspot.com.br/
    
    
    Twitter https://twitter.com/coderpirata
    
    
    Google+ https://plus.google.com/103146866540699363823
    
    
    Pastebin http://pastebin.com/u/CoderPirata
    
    
    Github https://github.com/coderpirata/
    
    
    
    

    屏幕截图

    imagesimagesimagesimages

    如果你发现任何 Bug 或者想提出任何建议,请通过电子邮件联系我



    文章标签:数据  EXP  搜索  漏洞  

    Copyright © 2011 HelpLib All rights reserved.    知识分享协议 京ICP备05059198号-3  |  如果智培  |  酷兔英语