Skip to content

sdsdilqem/exploitdbapi

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

7 Commits

.whitesource

.whitesource

 
 

API.php

API.php

 
 

README.md

README.md

 
 

exploitdb.class.php

exploitdb.class.php

 
 

exploitdb.db

exploitdb.db

 
 

install.sh

install.sh

 
 

mod_rewrite-sub.php

mod_rewrite-sub.php

 
 

update-all.sh

update-all.sh

 
 

update-db.php

update-db.php

 
 

update-exploit-db.sh

update-exploit-db.sh

 
 

Repository files navigation

#exploitdb-API The goal is keep a SGDB (sqlite3 or your preferred) synchronized with exploit-db.com, through exploit-db official github repository, and to offer a search HTTP API by CVE, OSVDB, Title etc.

Features:

  • Get information aobut CVE, OSVDB and other from exploit-db official website
  • Script (service by crontab) to update from it from official repository of The Exploit Database, a project sponsored by Offensive Security.
  • Script (Service by crontab) to sync exploits from repository to DB
  • API to search on DB
  • install Script
  • HTTP Search API
  • include a SQLite3 DB that you need to start (synchronized weekly)
  • Logs and statistics

##All you need

###Intalation Clone this Repository

git clone https://github.com/asrocha/exploitdb-API.git

Run install.sh with exploit-db diretctory destination default ./exploits

./install.sh ./exploits

Run update-db.php to update the database:

php update-db.php

Take care if you do not downloaded de exploitdb.db it will take a lot of time around 50 hours

###Crontab you could customize your own update time in crontab, we recommend hourly

updating only exploits files hourly:

59 * * * * * update-exploit-db.sh

updating DB from files hourly:

59 * * * * * php update-db.php

if you prefer you can upate all together updating all hourly:

59 * * * * * update-all.sh

Conf

All you need to conf is setting the path on "__construct function" in exploitdb.class.php Make sure that $this->exploitdb_dir = "./exploits/platforms/" is correct if you wanna that the logs are preserved set $preserv_log = 1;

Running

From PHP builtn Server With mod_rewrite

 php -S localhost:8080 mod_rewrite-sub.php

Without mod_rewrite

 php -S localhost:8080

API Usage:

####Searching by CVE

Using mod_rewrite:

http://localhost:8080/CVE/2016-3714
http://localhost:8080/byCVE/2016-3714
http://localhost:8080/cve/2016-3714
http://localhost:8080/bycve/2016-3714

Query String

http://localhost:8080/API.php?CVE=2016-3714
http://localhost:8080/API.php?cve=2016-3714
http://localhost:8080/API.php?byCVE=2016-3714
http://localhost:8080/API.php?bycve=2016-3714

####Searching by OSVDB

Using mod_rewrite:

http://localhost:8080/OSVDB/29421
http://localhost:8080/osbdb/29421
http://localhost:8080/byosvdb/29421
http://localhost:8080/byOSVDB/29421

Query String

http://localhost:8080/API.php?OSVDB=29421
http://localhost:8080/API.php?osvdb=29421
http://localhost:8080/API.php?byOSVDB29421
http://localhost:8080/API.php?byosbdb=29421

####Searching by Title or Exploit Using mod_rewrite:

http://localhost:8080/exploit/ms14

Query String

http://localhost:8080/API.php?exploit=ms14

Statistcs

If you wanna know how many exploits are on database

http://localhost:8080/statistcs
http://localhost:8080/API.php?statistcs

Have a lot of Fun !!!

About

Exploitdb php api

Resources

Readme
Activity

Stars

0 stars

Watchers

1 watching

Forks

2 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages