searchsploit 命令

常用示例

说明

searchsploit is a command-line tool for searching the Exploit Database (exploit-db.com) archive locally. It provides offline access to thousands of public exploits, shellcodes, papers, and vulnerability information maintained by Offensive Security. The tool searches both exploit titles and file paths by default. Multiple search terms are combined with AND logic—all terms must match. Use quotes for exact phrases and exclude patterns with --exclude. Results show the exploit title and local path. Once an exploit is found, use -m to copy it to your current directory or -x to view its content. The --cve option searches by CVE identifier for known vulnerabilities. The database requires periodic updates with -u.

参数

-c, --case

Case-sensitive search

-e, --exact

Exact match search

-s, --strict

Strict search; disable fuzzy version matching

-t, --title

Search exploit titles only (default: title and path)

--exclude _TERM_

Exclude results containing term

-p, --path

Show full path to exploit file

-m, --mirror _ID_

Copy exploit to current directory

-x, --examine _ID_

Display exploit content

-j, --json

Output in JSON format

-w, --www

Show Exploit-DB.com URLs instead of local paths

--cve _ID_

Search by CVE identifier

--id

Display EDB-ID rather than local path

--nmap _FILE_

Search using Nmap XML service version output

-o, --overflow

Allow title overflow in columns

-v, --verbose

Display extended information

--colour

Disable color highlighting in search results

-u, --update

Update local database

-h, --help

Display help