🛠️Windows Exploit Suggester

Theory

There’s a Windows version of Linux Exploit Suggester called, as you might expect, Windows Exploit Suggester. This is a tool for identifying missing patches on the Windows target which may indicate possible vulnerabilities. The tool takes the output from the ‘systeminfo’ command and compares the target’s patch levels (hotfixes installed) against the latest version of the Microsoft vulnerability database (the vulnerability database is automatically downloaded and stored as an Excel spreadsheet). Based on this comparison the tool suggests possible public exploits (marked with an E) and Metasploit modules (marked with an M) that may work against the unpatched system.

Practical

Github

git clone https://github.com/GDSSecurity/Windows-Exploit-Suggester.git

Update the database

python2 windows-exploit-suggester.py --update

Get system information

Run following command in target window and save the output in text file,

Copy

CMD> systeminfo

Check for Vulnerabilities

python windows-exploit-suggester.py --database 2018-02-08-mssb.xls --systeminfo sysinfo.txt

You need to store the system info in a text file and also need to pass the database file

REFERENCES

PreviousReporting NextWindows-Privilege-Escalation

Last updated 1 year ago

hashtagTheory

hashtagPractical

hashtagGithub

hashtagUpdate the database

hashtagGet system information

hashtagCheck for Vulnerabilities

hashtagREFERENCES