Pompem
Pompem is an exploit and vulnerability finder that automates searches across major databases like PacketStorm, CXSecurity, ZeroDay, Vulners, NVD, and WPScan. It facilitates the work of pentesters, ethical hackers, and forensics experts by exporting results to HTML or text format.
Description
Pompem is designed to streamline the process of finding exploits and vulnerabilities by performing advanced searches in key databases including PacketStorm security, CXSecurity, ZeroDay, Vulners, National Vulnerability Database, and WPScan Vulnerability Database. This tool is essential for securing networks and systems, making it invaluable for professionals in penetration testing, ethical hacking, and digital forensics.
Use cases include rapid identification of available exploits during vulnerability assessments, reconnaissance phases of pentests, and forensic investigations where known vulnerabilities need to be cross-referenced. The ability to export search results to HTML or text formats supports documentation and reporting workflows.
By automating searches across multiple sources, Pompem reduces manual effort and ensures comprehensive coverage of exploit information, enhancing efficiency in security operations.
How It Works
Pompem operates by taking user-provided search keywords and querying a predefined set of exploit and vulnerability databases: PacketStorm security, CXSecurity, ZeroDay, Vulners, National Vulnerability Database, and WPScan Vulnerability Database. It aggregates results from these sources using HTTP requests via Python libraries, then formats and optionally exports them to text or HTML files. The --get option enables downloading of identified exploit files directly.
Installation
sudo apt install pompemFlags
Examples
pompem -hpompem -s keywordpompem -s keyword1,keyword2pompem -s keyword --txtpompem -s keyword --htmlpompem --updatepompem -s keyword -g