这是indexloc提供的服务,不要输入任何密码
Skip to content

Better exploit searching #13

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 30 commits into from
Feb 5, 2018
Merged

Better exploit searching #13

merged 30 commits into from
Feb 5, 2018

Conversation

@linted
Copy link
Owner

@linted linted commented Jan 28, 2018

TL;DR

  • Removed abandoned dependency
  • Multi-threading search of exploit db
  • No longer needs to download exploitdb, and supports custom path to the database

This branch removes the abandoned dependency we were using to parse exploitdb. The major reason for moving away from that dependency is due to the change in structure of exploitdb's archive. The new parsing method uses kali's built in searchsploit database, and also supports custom csv files locations. Since we are doing the parsing ourself now, the multithreading library speeds up the process by running 10 threads at once in a pool doing the searches. In the future we can add a -j option to configure the number of jobs, but that is for another pull request.

linted added 30 commits January 24, 2018 21:51
@linted
first itteration of new search server
38c112e
@linted
fixed global issue and added more to whitelist
970dda9
@linted
added things missing from last commit
b28a607
@linted
added splat of the list to popen
a62be29
@linted
changed to cutting down of the version number to see if we get more r…
6830155 
…esults
@linted
added some error handling so the server doesn't die whenever an excep…
c72e529 
…tion is hit
@linted
Just realized I'm an idiot of changing a string to byteString and bac…
ed0709d 
…k to string before sending it
@linted
fixed miss matches ) and added better formating to a print statement
7129bb0
@linted
I guess it did actually need byte strings and it just lied to me..
f1112f5
@linted
forgot to switch the logig from black list to whitelist
f98377e
@linted
moved searchsploit check to pre-main() and made the search loop cleaner?
17d166f
@linted
fixed miss used variables
0b5e000
@linted
fixed trying to concat a list to a string
731cd51
@linted
stupid )'s will be the end of me
1023a3e
@linted
stupid )'s will be the end of me
61b1877
@linted
changed to json output of searchsploit and checking it to make sure w…
4e75c0c 
…e got a result before sending it back
@linted
fixed miss used variable
20fff39
@linted
changed to a pool of workers to take care of the searching
5368eca
@linted
fixed missing except
c31064a
@linted
Trying another way to pass this iterable to be pickled
3057292
@linted
added proper termination of the pool
8fa10a4
@linted
fixed miss named var
82dc7c7
@linted
got pools working
cf0aea6
@linted
moved away from using searchsploit and started parsing the csv on our…
7203d23 
… own
@linted
removed the required ip and port, that was a dumb idea and i regreted…
0c77ce8 
… it instantly
@linted
added a new line after every output, and moved the section header to …
c36bfde 
…after we check if we got results
@linted
One day I will eradicate the world of the ). I will destroy them so t…
1d2c8e9 
…hat no one will ever have to experience the terrible feeling of forgeting one ever again.
@linted
Today is not that day
4678dd8
@linted
forgot to rejoin the query
3437cf5
@linted
removed submodule dependency
9e02bf2
@linted linted requested a review from Whurbin January 28, 2018 03:22
@linted
Copy link
Owner Author

linted commented Jan 28, 2018

This pull request should solve #12

@Whurbin
Copy link
Collaborator

Whurbin commented Jan 31, 2018

Looks good

@linted linted merged commit 69c9c14 into master Feb 5, 2018
@linted linted deleted the devel branch July 1, 2018 01:49
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@Whurbin Whurbin Whurbin approved these changes

Assignees

@Whurbin Whurbin

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@linted @Whurbin