Greetings everyone, I hope you all are fine and shine. Welcome again to another tutorial on how to find exploit and vulnerabilities. Some of the people may probably be aware of this tool, but for those who don’t know here is the guide to take a loot at.
“Pompem is an open source tool, designed to automate the search for Exploits and Vulnerability in the most important databases. Developed in Python, has a system of advanced search, that help the work of pentesters and ethical hackers. In the current version, it performs searches in PacketStorm security, CXSecurity, ZeroDay, Vulners, National Vulnerability Database, WPScan Vulnerability Database”
As always first we need to clone or zip download.
github = https://github.com/rfunix/Pompem
-
once you got the clone link, simply clone it where you exactly want it.
$ git clone (URL) -
$ cd /Pompem (navigate to the directory)
-
$ pip install requirements.txt
-
Now you are good to go with it.
$ python3 pompem.py -h (shows the help menu)(written in python 3.5) -
Once you open the help menu, you will see two types of result for displaying the
result.
–txt (shows the result in text format on the terminal
–html (shows the result in html format(browser), which is great) -
Now we will find vulnerabilities and exploits.
-
Let’s target drupal for a few moments.
$ python3 pompem.py -s drupal --html (-s is for search)
Now this will display alot of vulerabilities and exploit in drupal. -
Let’s target joomla
$ python3 pompem.py -s joomla --html
I hope you get the idea how to use it further.
Didn’t get the article? = https://www.youtube.com/watch?v=NmoQfHAKuoM&t=54s
Thank You <3