Exploit Database barcha joylashtirilgan exploit kodlarining yuklab olinadigan arxivlangan nusxasini taqdim etadi. Ushbu arxiv Kali-da exploitdb paketida sukut bo‘yicha o‘rnatilgan. Har qanday baholashdan oldin paketni yangilashni tavsiya qilamiz, bu eng so‘nggi exploitlar o‘rnatilganligini ta’minlaydi. Paketni quyidagi buyruqlar yordamida yangilash mumkin:

kali@kali:~$ sudo apt update && sudo apt install exploitdb
[sudo] password for kali:
...
The following packages will be upgraded:
	exploitdb
...
Setting up exploitdb (20220526-0kali1) ...
...

Ro‘yxat 5 - Kali Linux repositoriyalaridan exploitdb paketini yangilash

Yuqoridagi buyruq Exploit Database arxivining mahalliy nusxasini /usr/share/exploitdb/ jildida yangilaydi. Bu jild ikkita asosiy bo‘limga bo‘lingan: exploits va shellcodes. /usr/share/exploitdb/ jildida exploits va shellcodes jildlari uchun CSV fayllari mavjud. Har bir CSV fayl o‘zining tegishli kichik jildlaridagi barcha fayllar haqidagi ma’lumotlarni o‘z ichiga oladi. Bu CSV fayllar Exploit DB veb-saytidagi ma’lumotlarga o‘xshash ma’lumotlarni, masalan, EDB-ID, sarlavha, muallif, platforma va avval aytib o‘tilgan boshqa ma’lumotlarni o‘z ichiga oladi.

kali@kali:~$ **ls -1 /usr/share/exploitdb/**
exploits
files_exploits.csv
files_shellcodes.csv
shellcodes

Ro‘yxat 6 - Arxivning asosiy jildidagi ikkita asosiy bo‘limni va ma’lumotlar bazasi havola fayllarini ro‘yxatlash

exploits jildiga o‘tganimizda, barcha exploitlarni o‘z ichiga olgan ko‘plab kichik jildlarni topamiz. Bu kichik jildlar operatsion tizim, arxitektura, skript tili va hokazolarga qarab ajratilgan. Masalan, linux kichik jildi barcha Linux bilan bog‘liq exploitlarni o‘z ichiga oladi.

kali@kali:~$ **ls -1 /usr/share/exploitdb/exploits**
aix
alpha
android
arm
ashx
asp
aspx
atheos
beos
bsd
bsd_x86
cfm
cgi
freebsd
freebsd_x86
...

Ro‘yxat 7 - exploits jildidagi tarkibni ro‘yxatlash

Exploit Database-ni qo‘lda qidirish, ayniqsa arxivdagi exploitlarning katta miqdori hisobga olinsa, ideal emas. Bu yerda searchsploit yordam dasturi foydali bo‘ladi.

searchsploit ni hech qanday parametrsiz buyruq satridan ishga tushirib, uning foydalanish tartibini ko‘rishimiz mumkin:

kali@kali:~$ **searchsploit**
  Usage: searchsploit [options] term1 [term2] ... [termN]
...

Ro‘yxat 8 - searchsploit buyruq sintaksisi

O‘rnatilgan misollar searchsploit yordamida butun arxiv bo‘ylab qidirish va argument sifatida berilgan turli qidiruv opsiyalariga asoslangan natijalarni ko‘rsatish imkonini beradi.

==========
 Examples
==========
  searchsploit afd windows local
  searchsploit -t oracle windows
  searchsploit -p 39446
  searchsploit linux kernel 3.2 --exclude="(PoC)|/dos/"
  searchsploit -s Apache Struts 2.0.0
  searchsploit linux reverse password
  searchsploit -j 55555 | json_pp

  For more examples, see the manual: <https://www.exploit-db.com/searchsploit>

Ro‘yxat 9 - searchsploit buyruq misollari

Opsiyalar qidiruvni toraytirish, chiqish formatini o‘zgartirish, exploitdb paketini yangilash va boshqa imkoniyatlarni taqdim etadi.

=========
 Options
=========
## Search Terms
   -c, --case     [Term]      Perform a case-sensitive search (Default is inSEnsITiVe)
   -e, --exact    [Term]      Perform an EXACT & order match on exploit title (Default is an AND match on each term) [Implies "-t"]
                                e.g. "WordPress 4.1" would not be detect "WordPress Core 4.1")
   -s, --strict               Perform a strict search, so input values must exist, disabling fuzzy search for version range
                                e.g. "1.1" would not be detected in "1.0 < 1.3")
   -t, --title    [Term]      Search JUST the exploit title (Default is title AND the file's path)
       --exclude="term"       Remove values from results. By using "|" to separate, you can chain multiple values
                                e.g. --exclude="term1|term2|term3"

## Output
   -j, --json     [Term]      Show result in JSON format
   -o, --overflow [Term]      Exploit titles are allowed to overflow their columns
   -p, --path     [EDB-ID]    Show the full path to an exploit (and also copies the path to the clipboard if possible)
   -v, --verbose              Display more information in output
   -w, --www      [Term]      Show URLs to Exploit-DB.com rather than the local path
       --id                   Display the EDB-ID value rather than local path
       --colour               Disable colour highlighting in search results
...

Ro‘yxat 10 - searchsploit opsiyalari yordam menyusi

Nihoyat, yordam menyusining Notes bo‘limi ba’zi foydali qidiruv maslahatlarini ochib beradi.