Exploit-DB

Para instalar exploitdb ejecutamos:

$ sudo apt install exploitdb -y

Para realizar una búsqueda ejecutamos:

$ searchsploit [search]

Por ejemplo:

$ searchsploit openssh 7.2

------------------------------------------------------------ ---------------------------------

Exploit Title | Path

------------------------------------------------------------ ---------------------------------

OpenSSH 2.3 < 7.7 - Username Enumeration | linux/remote/45233.py

OpenSSH 2.3 < 7.7 - Username Enumeration (PoC) | linux/remote/45210.py

OpenSSH 7.2 - Denial of Service | linux/dos/40888.py

OpenSSH 7.2p1 - (Authenticated) xauth Command Injection | multiple/remote/39569.py

OpenSSH 7.2p2 - Username Enumeration | linux/remote/40136.py

OpenSSH < 7.4 - 'UsePrivilegeSeparation Disabled' Forwarded | linux/local/40962.txt

OpenSSH < 7.4 - agent Protocol Arbitrary Library Loading | linux/remote/40963.txt

OpenSSH < 7.7 - User Enumeration (2) | linux/remote/45939.py

OpenSSHd 7.2p2 - Username Enumeration | linux/remote/40113.txt

------------------------------------------------------------ ---------------------------------

Shellcodes: No Results

Bases de datos online

• https://www.exploit-db.com/

• https://www.rapid7.com/db/

• https://www.vulnerability-lab.com/