CLI tool to search for exploits on exploit-db ``` # update the database first as exploits are stored offline in /usr/share/exploitdb/exploits searchsploit -u # basic syntax to search on searchsploit <keywords> searchsploit vsftpd 2.3.4 # -x <id without file extension> view the content of the script, always check what the script is doing! # -m <id without file extension> to copy the script to the current directory searchsploit -m <id without file extension> ``` Many scripts on searchsploit are ruby or Python ``` ruby <script.rb> <target IP> # ruby python3 <script.py> <target IP> # python bash <script.sh> <target IP> # bash pl <script.pl> <target IP> # perl ``` Scripts can be quite intrusive and can crash the target computer, just restart the machine. Try to use less intrusive methods before using these scripts.