Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/ycdxsb/PocOrExp_in_Github
Automatically Collect POC or EXP from GitHub by CVE ID. If you are unable to find the POC/EXP on GitHub, you can also check here: https://pocorexps.nsa.im/
https://github.com/ycdxsb/PocOrExp_in_Github
cve exploit poc vulnerabilities
Last synced: 21 days ago
JSON representation
Automatically Collect POC or EXP from GitHub by CVE ID. If you are unable to find the POC/EXP on GitHub, you can also check here: https://pocorexps.nsa.im/
- Host: GitHub
- URL: https://github.com/ycdxsb/PocOrExp_in_Github
- Owner: ycdxsb
- License: mit
- Created: 2021-04-13T05:46:16.000Z (over 3 years ago)
- Default Branch: main
- Last Pushed: 2024-10-29T09:39:21.000Z (about 1 month ago)
- Last Synced: 2024-10-29T11:45:06.773Z (about 1 month ago)
- Topics: cve, exploit, poc, vulnerabilities
- Language: Python
- Homepage:
- Size: 516 MB
- Stars: 916
- Watchers: 42
- Forks: 199
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
- License: LICENSE
Awesome Lists containing this project
- awesome-hacking-lists - ycdxsb/PocOrExp_in_Github - Automatically Collect POC or EXP from GitHub by CVE ID. If you are unable to find the POC/EXP on GitHub, you can also check here: https://pocorexps.nsa.im/ (Python)
README
PocOrExp in Github
> Aggregating existing Poc or Exp on Github, CVE information comes from the official CVE website.
>
> Note: Aggregation is only done through general CVE numbers, so for vulnerabilities with Windows-specific numbers like MS17-010 and famous vulnerabilities with nicknames, it's better to search for them yourself.## Usage
```
python3 exp.py -h
usage: exp.py [-h]
[-y {1999,2000,2001,2002,2003,2004,2005,2006,2007,2008,2009,2010,2011,2012,2013,2014,2015,2016,2017,2018,2019,2020,2021,all}]
[-i {y,n}] [-w {y,n}]CVE Details and Collect PocOrExp in Github
optional arguments:
-h, --help show this help message and exit
-y {1999,2000,2001,2002,2003,2004,2005,2006,2007,2008,2009,2010,2011,2012,2013,2014,2015,2016,2017,2018,2019,2020,2021,all}, --year {1999,2000,2001,2002,2003,2004,2005,2006,2007,2008,2009,2010,2011,2012,2013,2014,2015,2016,2017,2018,2019,2020,2021,all}
get Poc or CVE of certain year or all years
-i {y,n}, --init {y,n}
init or not
-w {y,n}, --watch {y,n}
keep an eye on them or not
```Parameter description:
- -y specifies the year of CVEs to process
- -i indicates whether it is the first initialization, y means initial, and will not process already handled CVEs, n means no, and will process already handled CVEs
- -w monitors PoC changes: the current strategy is to update known CVEs with PoC from previous years, and all CVEs from the current yearSteps to use:
- STEP 1: Install dependencies
```
pip3 install -r requirements.txt
```- STEP 2: Apply for a GitHub API token and write it into the TOKENS file in the project directory. The format is as follows, multiple tokens can be used:
```
token:your_token
```- STEP 3: Process CVE information
```
python3 exp.py -y 2021 -i y
python3 exp.py -y all -i y
```- If you want to speed up the process, you can use the asynchronous script exp_async.py
## PocOrExps
- [PocOrExp All](https://github.com/ycdxsb/PocOrExp_in_Github/blob/main/PocOrExp.md)
- [2024](https://github.com/ycdxsb/PocOrExp_in_Github/tree/main/2024/README.md)
- [2023](https://github.com/ycdxsb/PocOrExp_in_Github/tree/main/2023/README.md)
- [2022](https://github.com/ycdxsb/PocOrExp_in_Github/tree/main/2022/README.md)
- [2021](https://github.com/ycdxsb/PocOrExp_in_Github/tree/main/2021/README.md)
- [2020](https://github.com/ycdxsb/PocOrExp_in_Github/tree/main/2020/README.md)
- [2019](https://github.com/ycdxsb/PocOrExp_in_Github/tree/main/2019/README.md)
- [2018](https://github.com/ycdxsb/PocOrExp_in_Github/tree/main/2018/README.md)
- [2017](https://github.com/ycdxsb/PocOrExp_in_Github/tree/main/2017/README.md)
- [2016](https://github.com/ycdxsb/PocOrExp_in_Github/tree/main/2016/README.md)
- [2015](https://github.com/ycdxsb/PocOrExp_in_Github/tree/main/2015/README.md)
- [2014](https://github.com/ycdxsb/PocOrExp_in_Github/tree/main/2014/README.md)
- [2013](https://github.com/ycdxsb/PocOrExp_in_Github/tree/main/2013/README.md)
- [2012](https://github.com/ycdxsb/PocOrExp_in_Github/tree/main/2012/README.md)
- [2011](https://github.com/ycdxsb/PocOrExp_in_Github/tree/main/2011/README.md)
- [2010](https://github.com/ycdxsb/PocOrExp_in_Github/tree/main/2010/README.md)
- [2009](https://github.com/ycdxsb/PocOrExp_in_Github/tree/main/2009/README.md)
- [2008](https://github.com/ycdxsb/PocOrExp_in_Github/tree/main/2008/README.md)
- [2007](https://github.com/ycdxsb/PocOrExp_in_Github/tree/main/2007/README.md)
- [2006](https://github.com/ycdxsb/PocOrExp_in_Github/tree/main/2006/README.md)
- [2005](https://github.com/ycdxsb/PocOrExp_in_Github/tree/main/2005/README.md)
- [2004](https://github.com/ycdxsb/PocOrExp_in_Github/tree/main/2004/README.md)
- [2003](https://github.com/ycdxsb/PocOrExp_in_Github/tree/main/2003/README.md)
- [2002](https://github.com/ycdxsb/PocOrExp_in_Github/tree/main/2002/README.md)
- [2001](https://github.com/ycdxsb/PocOrExp_in_Github/tree/main/2001/README.md)
- [2000](https://github.com/ycdxsb/PocOrExp_in_Github/tree/main/2000/README.md)
- [1999](https://github.com/ycdxsb/PocOrExp_in_Github/tree/main/1999/README.md)## Log
- 2021-04-12: Fixed the issue of GitHub search returning results like CVE-2020-36184 when searching for CVE-2020-3618.
- 2021-04-13: Switched to CVE official data due to missing CVE numbers on the NVD website, released an asynchronous script.
- 2021-04-14: Completed the first round of PocOrExp crawling, now using 20 GitHub API tokens to poll all CVEs within 12 hours and update.
- 2021-04-16: Added -w parameter.
- 2021-04-17: Added a daily update script today.py. The update content can be seen in [Today](https://github.com/ycdxsb/PocOrExp_in_Github/tree/main/Today.md). You can modify it, for example, to send the `get_today_update` results to yourself through services like Dingding or wxpusher.
- 2021-04-20: Found some non-PoC repos, removed them by adding a blacklist, and updated the asynchronous script to v2.
- 2021-04-23: Discovered that some results in today's update are not recently updated repos due to the following reasons:
- 1. The repo changed from private to public.
- 2. When querying through the API, the script strategy is to take the top 30 results by star count, so when the number of other repos with the same CVE increases, they enter the top 30 list, appearing as newly added today. Found that only CVE-2019-0708 has more than 100 search results, so pagination was not used to crawl all. Changed to taking the top 100 results by star count each time.
- 2021-04-30: [download](https://github.com/ycdxsb/PocOrExp_in_Github/tree/main/download.py) to download all PoC/Exp to prevent repo deletion by publishers. Please update git to the latest version to prevent attacks when cloning on Windows [CVE-2020-27955](https://github.com/yhsung/cve-2020-27955-poc).
- 2021-05-19: Found some phishing attempts using CVE on GitHub, like [JamesGee](https://github.com/JamesGeee). No special handling, please be cautious.
- 2024-09-01: If you are unable to find the POC/EXP on GitHub, you can also check here: https://pocorexps.nsa.im/## Stargazers
[![Stargazers over time](https://starchart.cc/ycdxsb/PocOrExp_in_Github.svg)](https://starchart.cc/ycdxsb/PocOrExp_in_Github)
## Reference
- https://github.com/nomi-sec/PoC-in-GitHub