SearchSploit

VERIFIED

Command-line interface for the Exploit Database archive

Exploitation FrameworksOSS

Easy

LinuxWindowsmacOS

Description

SearchSploit is the command-line search tool for Exploit-DB, an archive of public exploits and corresponding vulnerable software. It allows offline searching of the exploits database, making it invaluable during engagements where internet access is limited. It indexes exploits, shellcodes, and papers by CVE, platform, type, and application.

Use Cases

Offline exploit database searching during engagements
Finding public exploits for identified services and versions
CVE-based exploit research and validation

Attack Phases

01. RECON

02. SCAN

03. EXPLOIT

04. PERSIST

05. COVER

MITRE ATT&CK Techniques (2)

T1588.005Obtain Capabilities: Exploits

Related Tools (3)

Metasploit Nmap Nuclei