1、CVE信息检索:从国家漏洞数据库获取CVE详细信息; 2、EPSS集成:包括利用预测评分系统(EPSS)数据,为CVE利用的可能性提供概率评分,有助于确定漏洞优先级; 3、公共漏洞信息聚合:收集公开可用的漏洞及其相关信息,帮助研究人员更好地了解漏洞的信息; 4、CISA KEV:显示CVE是否已列入CISA的已知可利用安全漏洞(KEV)中; 5、修复优先级系统:根据包括公共漏洞可利用性在内的各种因素,评估并分配漏洞修复的优先级; 6、多CVE支持和导出选项:在一次任务执行中支持多个CVE,并允许将结果导出为HTML、JSON和CSV格式; 7、漏洞扫描程序导入:从流行的漏洞扫描程序中导入漏洞扫描功能,并直接搜索已知的漏洞利用PoC; 8、人工智能驱动的风险评估:利用OpenAI提供详细的风险评估、潜在攻击场景、缓解建议和执行摘要; 9、用户友好的界面:易于使用,提供清晰简洁的信息; 10、全面的安全工具:非常适合进行快速安全评估,并随时了解最近的漏洞信息;
1、GitHub; 2、ExploitDB; 3、VulnCheck;(需要一个免费的VulnCheck API密钥) 4、Packet Storm; 5、Nuclei;
1、Nessus (.nessus) 2、Nexpose (.xml) 3、OpenVAS (.xml) 4、Docker (.json)
GitHub安装
git clone https://github.com/xaitax/SploitScan.gitcd sploitscanpip install -r requirements.txtpip安装
pip install --user sploitscanKali/Ubuntu/Debian安装
apt install sploitscan配置文件
~/.当前目录~/.sploitscan/~/.config/sploitscan//etc/sploitscan/{"vulncheck_api_key": "your_vulncheck_api_key","openai_api_key": "your_openai_api_key"}
参数选项
-h, --help 显示工具帮助信息和退出-e {json,JSON,csv,CSV,html,HTML}, --export {json,JSON,csv,CSV,html,HTML} 可选: 将结果导出为JSON、CSV或HTML文件格式-t {nessus,nexpose,openvas,docker}, --type {nessus,nexpose,openvas,docker} 指定导入文件的类型: 'nessus'、'nexpose'、'openvas'或'docker'-i IMPORT_FILE, --import-file IMPORT_FILE 导入文件的路径查询单个CVE
sploitscan CVE-2024-1709查询多个CVE
sploitscan CVE-2024-1709 CVE-2024-21413从漏洞扫描器导入
sploitscan --import-file path/to/yourfile.nessus --type nessus结果导出
sploitscan CVE-2024-1709 -e htmlDocker
docker build -t sploitscan .docker run --rm sploitscan CVE-2024-1709Windows(PowerShell)
docker run -v ${PWD}:/app --rm sploitscan CVE-2024-1709 -e JSONLinux
docker run -v $(pwd):/app --rm sploitscan CVE-2024-1709 -e JSON$ sploitscan.py CVE-2024-21413[...]┌───[ AI-Powered Risk Assessment ]|| 1. Risk Assessment| -------------------| The vulnerability identified by CVE-2024-21413 is a critical remote code execution flaw in| Microsoft Outlook with a CVSS score of 9.8. The impact on business operations can be severe due to| its high potential to be exploited over a network without any user interactions or elevated| privileges. This unvalidated input vulnerability (CWE-20) could allow an attacker to execute| arbitrary code on the target system, thereby compromising the confidentiality, integrity, and| availability of critical business data and systems. Given its critical rating and the existence of| multiple exploits on public repositories like GitHub, the likelihood of exploitation is very high.| This necessitates immediate attention from the security teams to mitigate the risks associated.|| 2. Potential Attack Scenarios| ------------------------------| An attacker could exploit this vulnerability by sending a specially crafted email to a victim| using Microsoft Outlook. Once the email is opened or previewed, the malicious payload would| execute, allowing the attacker to gain control over the victim's system. The process involves: 1.| Crafting a malicious email leveraging the specific flaw in email handling within Microsoft| Outlook. 2. Sending the email to the intended victim. 3. Upon opening or previewing the email, the| victim’s system executes the malicious code. The potential outcomes of this attack include theft| of sensitive information, installation of malware or ransomware, and compromising other systems| within the same network due to lateral movement capabilities.|| 3. Mitigation Recommendations| ------------------------------| Immediate mitigation recommendation includes: 1. Applying the latest security patches provided by| Microsoft. Reference: https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21413 2.| Implementing network-level protections such as email filtering and network segmentation to limit| the spread of potential infections. 3. Conducting regular security awareness training for users to| recognize phishing and malicious emails. 4. Monitoring network and system activity for signs of| suspicious behavior and unauthorized execution. 5. Regularly backing up critical data and ensuring| the integrity of backups.|| 4. Executive Summary| ---------------------| CVE-2024-21413, a critical remote code execution vulnerability in Microsoft Outlook, poses a| significant risk to businesses due to its potential to be exploited without user interaction.| Multiple exploit proofs are publicly available, increasing the likelihood of attacks.| Organizations must act swiftly by applying the necessary patches from Microsoft, enhancing their| email security protocols, and educating their staff to identify potential phishing attempts.| Mitigating this vulnerability is essential to protect sensitive information, maintain business| integrity, and ensure system availability, thus preventing potential financial and reputational| damage. Immediate action is crucial to safeguard the organization against this severe threat.|└────────────────────────────────────────原文始发于微信公众号(FreeBuf):SploitScan:一款多功能实用型安全漏洞管理平台
- 左青龙
- 微信扫一扫
-
- 右白虎
- 微信扫一扫
-
评论