Pompem - Exploit Finder

技术类 阅读: 22976 1 评

Pompem is an open source tool, which is designed to automate the search for exploits in major databases. Developed in Python, has a system of advanced search, thus facilitating the work of pentesters and ethical hackers. In its current version, performs searches in databases: Exploit-db, 1337day, Packetstorm Security...

This is Pompem Web Version (PHP sintax): WebPompem



You can download the latest tarball by clicking here or latest zipball by clicking  here.

Preferably, you can download pompem by cloning the Git repository:

git clone Pompem-dev

Pompem works out of the box with Python version '''2.6.x''' and '''2.7.x''' on any platform.

Pompem lib uses the following setup:

If you have not realized the Download or use virtualenv:

  1. Create virtual env with virtualenv .env
  2. Activate virtualenv with source .env/bin/activate
  3. Install dependêncies with pip install -r requeriments.txt
If you use pip and have not vitualenv use 'sudo pip install virtualenv' or see virtualenv website.


To get the list of basic options and information about the project:

python -h

Examples of use:

python -s Wordpress
python -s Joomla --html
python -s "Internet Explorer,joomla,wordpress" --html
python -s FortiGate --txt
python -s ssh,ftp,mysql
python -s "joomla" -g
python --update


Pompem is program is free software; you may redistribute and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; Version 2 with the clarifications and exceptions described in the license file. This guarantees your right to use, modify, and redistribute this software under certain conditions. If you wish to embed Pompem technology into proprietary software, we sell alternative licenses (contact [email protected]).

Pompem is free software, keeping the picture can USE AND ABUSE

PHP Execute Command Bypass Disable_functions