HoundSploit Advanced Graphical Search Engine for Exploit-DB
HoundSploit Advanced Graphical Search Engine for Exploit-DB

HoundSploit: An Advanced Graphical Search Engine for Exploit-DB

HoundSploit is an advanced search engine for Exploit-DB developed in Python using Flask as micro web framework, born with the aim of showing the user the most accurate search results.

Features

  • Effective version number filtering
  • Advanced filtering
  • Sort by date and description
  • Fast search
  • Search suggestions with customization
  • Syntax highlighting of the source code of exploits and shellcodes
  • Downloading of the source code of exploits and shellcodes
  • Highlighting of searched words in search results
  • Check for updates (both for software and database)

News in HoundSploit 2

  • Flask instead of Django
  • SQLAlchemy instead of Django ORM
  • The kernel of the search engine is the same used in hsploit, which is the CLI version of HoundSploit
  • Dark and Light themes

Examples

Effective version number filtering examples

Example I: 11 exploits and 0 shellcodes found for “WordPress Core 2.0.2”

"
"
Example I
Example I

Example II: 15 exploits and 0 shellcodes found for “Linux Kernel 4.2.3”

Example II
Example II

Advanced filtering

Using advanced search you can use the following filters for filtering search results:

  • Search operator: AND or OR
  • Author
  • Type
  • Platform
  • Port
  • Date interval
Advanced filtering
Advanced filtering

Search suggestion

You can choose to show a particular suggestion for a given searched string. For each case you can also decide to use automatic replacement or not. It is possible to add new suggestions and delete the existing suggestions.

Search suggestion
Search suggestion

Customization

You can choose to use the Light or the Dark theme

Light Theme
Light Theme
Dark Theme
Dark Theme

Minimum Requirements

Supported OS

  • Linux
  • macOS
  • Windows (Preview)

Interpreter and tools

  • Python 3
  • SQLite 3
  • git

Installation

Linux (non-root user) [recommended]

In order to install HoundSploit we have to run the following commands:

git clone https://github.com/nicolas-carolo/houndsploit
cd houndsploit
./install_db_linux.sh
pip install -r requirements.txt
python setup.py install

Now you can remove the repository of HoundSploit you have downloaded, because this repository has been cloned in ~/.HoundSploit/houndsploit for supporting automatic updates. If you have already installed the version 2.1.0 of hsploit or you never installed hsploit, you can check if there is the directory ~/HoundSploit and then you can delete it.

"
"

Linux (root user)

In order to install HoundSploit we have to run the following commands:

git clone https://github.com/nicolas-carolo/houndsploit
cd houndsploit
mkdir /root/.HoundSploit
touch /root/.HoundSploit/enable_root.cfg
./install_db_linux.sh
pip install -r requirements.txt
python setup.py install

Now you can remove the repository of HoundSploit you have downloaded, because this repository has been cloned in ~/.HoundSploit/houndsploit for supporting automatic updates. If you have already installed the version 2.1.0 of hsploit or you never installed hsploit, you can check if there is the directory ~/HoundSploit and then you can delete it.

macOS

In order to install HoundSploit we have to run the following commands:

git clone https://github.com/nicolas-carolo/houndsploit
cd houndsploit
./install_db_darwin.sh
pip install -r requirements.txt
python setup.py install

Now you can remove the repository of HoundSploit you have downloaded, because this repository has been cloned in ~/.HoundSploit/houndsploit for supporting automatic updates. If you have already installed the version 2.1.0 of hsploit or you never installed hsploit, you can check if there is the directory ~/HoundSploit and then you can delete it.

Windows (Preview)

Before proceding with the installation, be sure that you have installed Python from the official site and not from the Windows Store Run a PowerShell session as Administrator

PS> git clone https://github.com/nicolas-carolo/houndsploit
PS> cd houndsploit
PS> powershell.exe -ExecutionPolicy Bypass -File .\install_db_windows.ps1
PS> pip install -r requirements.txt
PS> python setup.py install

Now you can remove the repository of HoundSploit you have downloaded, because this repository has been cloned in ~\.HoundSploit\houndsploit for supporting automatic updates.

Troubleshooting

If you encounter problems during the installation phase, please run:

rm -fr ~/.HoundSploit

and then repeat the installation phase.

Usage

  • Run HoundSploit server:
houndsploit
  • Go to http://localhost:5000

Copyright © 2020, Nicolas Carolo. All rights reserved.