{"id":24908990,"url":"https://github.com/vulnerability-lookup/exploitdbsighting","last_synced_at":"2025-12-14T15:40:14.811Z","repository":{"id":263971613,"uuid":"891966487","full_name":"vulnerability-lookup/ExploitDBSighting","owner":"vulnerability-lookup","description":"A client that retrieves vulnerability observations from Exploit-DB and pushes them to a Vulnerability-Lookup instance.","archived":false,"fork":false,"pushed_at":"2025-02-05T08:39:54.000Z","size":95,"stargazers_count":0,"open_issues_count":0,"forks_count":1,"subscribers_count":1,"default_branch":"main","last_synced_at":"2025-03-19T06:09:28.775Z","etag":null,"topics":["exploit","observations","sightings","vulnerability","vulnerability-lookup"],"latest_commit_sha":null,"homepage":"https://pypi.org/project/ExploitDBSighting","language":"Python","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"gpl-3.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/vulnerability-lookup.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"COPYING","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2024-11-21T09:24:54.000Z","updated_at":"2025-02-05T08:39:57.000Z","dependencies_parsed_at":null,"dependency_job_id":"d6af9283-4e14-40a9-97ee-f875366ee540","html_url":"https://github.com/vulnerability-lookup/ExploitDBSighting","commit_stats":null,"previous_names":["cedricbonhomme/exploitdbsighting","vulnerability-lookup/exploitdbsighting"],"tags_count":3,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/vulnerability-lookup%2FExploitDBSighting","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/vulnerability-lookup%2FExploitDBSighting/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/vulnerability-lookup%2FExploitDBSighting/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/vulnerability-lookup%2FExploitDBSighting/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/vulnerability-lookup","download_url":"https://codeload.github.com/vulnerability-lookup/ExploitDBSighting/tar.gz/refs/heads/main","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":245289733,"owners_count":20591122,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["exploit","observations","sightings","vulnerability","vulnerability-lookup"],"created_at":"2025-02-02T02:35:01.015Z","updated_at":"2025-12-14T15:40:14.805Z","avatar_url":"https://github.com/vulnerability-lookup.png","language":"Python","funding_links":[],"categories":[],"sub_categories":[],"readme":"# ExploitDBSighting\n\nA client that retrieves vulnerability observations from\n[Exploit-DB](https://www.exploit-db.com) and pushes them to a\n[Vulnerability-Lookup](https://github.com/vulnerability-lookup/vulnerability-lookup) instance.\n\nExploit-DB.com is a comprehensive and publicly accessible database of security\nvulnerabilities and exploits, maintained by Offensive Security. It serves as a\ncrucial resource for penetration testers, researchers, and ethical hackers by\noffering detailed information and proof-of-concept code.\n\nWithin the Vulnerability-Lookup project, data from Exploit-DB are leveraged as sightings,\nspecifically categorized as \"exploited\" in alignment with the MISP taxonomy of sightings.\n\nMore information about the sightings:\n\n- [Corresponding MISP taxonomy](https://github.com/MISP/misp-taxonomies/blob/fd2fbaf2a450e42a490551e5a8e2fa6df039a6b8/vulnerability/machinetag.json#L26-L63)\n- [Vulnerability-Lookup documentation](https://www.vulnerability-lookup.org/documentation/sightings.html)\n\n## Installation\n\n\n[pipx](https://github.com/pypa/pipx) is an easy way to install and run Python applications in isolated environments.\nIt's easy to [install](https://github.com/pypa/pipx?tab=readme-ov-file#on-linux).\n\n\n```bash\n$ pipx install ExploitDBSighting\n$ export ExploitDBSighting_CONFIG=~/conf.py\n```\n\nThe configuration should be defined in a Python file (e.g., ``~/.conf.py``).\nYou must then set an environment variable (``ExploitDBSighting_CONFIG``) with the full path to this file.\n\n\n### With Docker\n\n```bash\ngit clone https://github.com/vulnerability-lookup/ExploitDBSighting\ncd ExploitDBSighting\n\n# Make sure conf.py exists in the project root before running\ndocker compose up --build\n```\n\n\u003e [!NOTE]\n\u003e The docker-compose.yml expects a conf.py file in the root directory.\n\u003e You can create it manually or copy the provided example:\n\u003e \n\u003e ```bash\n\u003e $ cp exploitdbsighting/conf_sample.py conf.py\n\u003e ```\n\n\n## Usage\n\n### Publishing sightings to Vulnerability-Lookup\n\n```bash\n$ ExploitDBSighting\nCVE-2017-14084\nhttps://www.exploit-db.com/exploits/42891\n2017-09-28 00:00:00+00:00\nPushing sighting to Vulnerability-Lookup…\n\nCVE-2017-14085\nhttps://www.exploit-db.com/exploits/42893\n2017-09-28 00:00:00+00:00\nPushing sighting to Vulnerability-Lookup…\n\nCVE-2017-14086\nhttps://www.exploit-db.com/exploits/42892\n2017-09-28 00:00:00+00:00\nPushing sighting to Vulnerability-Lookup…\n```\n\nBy specifying a date with the --since parameter:\n\n```bash\n$ ExploitDBSighting --since 2025-01-01\nFetching records starting at 0…\nCVE-2025-48932\nhttps://www.exploit-db.com/exploits/52383\n2025-07-28 00:00:00+00:00\nPushing sighting to Vulnerability-Lookup…\n\nCVE-2025-1974\nhttps://www.exploit-db.com/exploits/52338\n2025-06-20 00:00:00+00:00\nPushing sighting to Vulnerability-Lookup…\n\nCVE-2025-0868\nhttps://www.exploit-db.com/exploits/52145\n2025-04-09 00:00:00+00:00\nPushing sighting to Vulnerability-Lookup…\n\nEncountered record older than specified --since date (2025-01-01 00:00:00+00:00). Stopping.\n```\n\n\n## License\n\n[ExploitDBSighting](https://github.com/vulnerability-lookup/ExploitDBSighting) is licensed under\n[GNU General Public License version 3](https://www.gnu.org/licenses/gpl-3.0.html)\n\n~~~\nCopyright (c) 2024-2025 Computer Incident Response Center Luxembourg (CIRCL)\nCopyright (C) 2024-2025 Cédric Bonhomme - https://github.com/cedricbonhomme\n~~~\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fvulnerability-lookup%2Fexploitdbsighting","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fvulnerability-lookup%2Fexploitdbsighting","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fvulnerability-lookup%2Fexploitdbsighting/lists"}