Public Exploits

searchsploit, Github

Searchsploit

Search for exploits:

searchsploit <keyword>

Mirror (-m) an exploit to current directory:

searchsploit -m <exploit_id>

Github

In the following scenarios we should check out Github for public exploits:

• searchsploit does not find anything useful

• The exploit found by searchsploit does not work properly

• The vulnerability is too new for exploit-db to include it

Compiling C Exploits

Linux Exploits

Compile:

gcc exploit.c -o exploit

Run:

chmod +x exploit
./exploit

Windows Exploits

Install mingw-64 and wine:

apt install mingw-w64
apt install wine

Compile:

i686-w64-mingw32-gcc exploit.c -o exploit.exe

Run:

wine exploit.exe