,--. ,--. ,---. ,---. ,---.,---.,--.,--`--,-' '-.,---. | .-. | .-. | .--( .-'| || ,--'-. .-| .-. : | '-' ' '-' \ `--.-' `' '' | | | | \ --. | |-' `---' `---`----' `----'`--' `--' `----' `--' http://pocsuite.org
Pocsuite is an open-sourced remote vulnerability testing and PoC development framework developed by the Knownsec Security Team. It serves as the cornerstone of the team.
You can use Pocsuite to verify and exploit vulnerabilities or write PoC/Exp based on it. You can also integrate Pocsuite in your vulnerability testing tool, which provides a standard calling class.
Vulnerability Testing Frameworkul_test
Written in Python and supported both validation and exploitation two plugin-invoked modes, Pocsuite could import batch targets from files and test those targets against multiple exploit-plugins in advance.（See "Pocsuite usage"）
PoC/Exp Development Kit
Like Metasploit, it is a development kit for pentesters to develope their own exploits. Based on Pocsuite, you can write the most core code of PoC/Exp without caring about the resulting output etc. There are at least several hundred people writing PoC/Exp based on Pocsuite up to date.
Users could utilize some auxiliary modules packaged in Pocsuite to extend their exploit functions or integrate Pocsuite to develop other vulnerability assesment tools.
Integrated ZoomEye And Seebug APIs
Pocsuite is also an extremely useful tool to integrate Seebug and ZoomEye APIs in a collaborative way. Vulnerablity assessment can be done automatically and effectively by searching targets through ZoomEye and acquiring PoC scripts from Seebug or locally.
Pocsuite works out of the box with Python version 2.6.x and 2.7.x on any platform.
You can use Git to clone the latest source code repository
$ git clone email@example.com:knownsec/Pocsuite.git
Or click here to download the latest source zip package, and extract
$ wget https://github.com/knownsec/Pocsuite/archive/master.zip $ unzip master.zip
$ cd Pocsuite $ python pocsuite.py --version
Or use pip
$ pip install pocsuite $ pocsuite --version
- How to use Pocsuite test vulnerability
- How to develop PoC/Exp based on Pocsuite
- How to integrate Pocsuite in applications